Yahoo! Music Jukebox 2.2 AddImage() ActiveX Remote Buffer Overflow
Gravedad: Medio
Identificadores de CVE : CVE-2008-0623,CVE-2008-0624,CVE-2008-0625
Fecha recomendada: 21 de julio de 2015
Descripción
Multiple buffer overflow vulnerabilities exist in Yahoo! Music Jukebox. These vulnerabilities are caused due to boundary errors within the Yahoo! Music Jukebox ActiveX Control. A remote attack can exploit these vulnerabilities by enticing the target user to open a crafted webpage, potentially causing arbitrary code to be injected and executed in the security context of the current user.
Revelación de la información
Apply associated Trend Micro DPI Rules.
Soluciones
Trend Micro Deep Security DPI Rule Number: 1001424
Trend Micro Deep Security DPI Rule Name: 1001424 - Microsoft Internet Explorer Yahoo! Music Jukebox AddBitmap & AddButton ActiveX Remote Buffer Overflow
Software y versión afectados
- Microsoft Internet Explorer