Computer Security Research - McAfee Avert Labs Blog

Potential Yahoo Messenger Zero-Day

Tuesday August 14, 2007 at 7:00 am CST
Posted by Karthik Raman

A post on a Chinese-language security forum claims that there is a zero-day vulnerability in Yahoo Messenger. Researchers at Avert Labs have found that this flaw may allow for user-assisted remote-code execution attacks. No code exploiting this flaw has been published yet.

We’re currently working with Yahoo to be able to confirm or deny that this is a zero-day.

We’ll keep you updated.

This entry was posted on Tuesday, August 14th, 2007 at 7:00 am and is filed under Exploit Research, Vulnerability Research, Zero-Day. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

One Response to “Potential Yahoo Messenger Zero-Day”

Scott Blomquist Says:
August 15th, 2007 at 9:42 am
Hi Karthik,
Good work, luckily nobody here runs any webcams.
Hope everything is going well and you’ve had some time to enjoy the summer.

Scott

Potential Yahoo Messenger Zero-Day

One Response to “Potential Yahoo Messenger Zero-Day”

Leave a Reply

Archives

Categories