Re: Yahoo Messenger - Multiple Vulnerabilities
From: Ben Laurie (ben@algroup.co.uk)Date: 05/27/02
- Previous message: Martijn Boerwinkel: "Cross Site Scripting Vulnerability in phpBB2's [IMG] tag and remote avatar"
- In reply to: Phuong Nguyen: "Yahoo Messenger - Multiple Vulnerabilities"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 27 May 2002 20:48:04 +0100 From: Ben Laurie <ben@algroup.co.uk> To: Phuong Nguyen <dphuong@yahoo.com>
Phuong Nguyen wrote:
> Given there are now somewhere between 13-65 million
> Yahoo! Messenger users worldwide (as described in the
> Summary above), the potential impact of this
> vulnerability poses a highly significant threat to
> users who do not soon upgrade their Yahoo! Messenger
> clients.
Or, if they're smart, simply disable the URL (use regedit to edit
HKEY_CLASSES_ROOT\ymsgr\shell\open\command to something that doesn't exist).
Cheers,
Ben.
-- http://www.apache-ssl.org/ben.html http://www.thebunker.net/"There is no limit to what a man can do or how far he can go if he doesn't mind who gets the credit." - Robert Woodruff
- Previous message: Martijn Boerwinkel: "Cross Site Scripting Vulnerability in phpBB2's [IMG] tag and remote avatar"
- In reply to: Phuong Nguyen: "Yahoo Messenger - Multiple Vulnerabilities"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
