Vulnerability Description
Buffer overflow in Yahoo! Messenger 5.6 allows remote attackers to cause a denial of service (crash) via a file send request (sendfile) with a large number of "%" (percent) characters after the Yahoo ID.
CVSS Score
2.6
LOW
AV:N/AC:H/Au:N/C:N/I:N/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Yahoo | Messenger | 5.6 |
References
- http://www.securityfocus.com/archive/1/342472Exploit
- http://www.securityfocus.com/bid/8894Exploit
- http://www.securityfocus.com/archive/1/342472Exploit
- http://www.securityfocus.com/bid/8894Exploit
FAQ
What is CVE-2003-1135?
CVE-2003-1135 is a vulnerability with a CVSS score of 2.6 (LOW). Buffer overflow in Yahoo! Messenger 5.6 allows remote attackers to cause a denial of service (crash) via a file send request (sendfile) with a large number of "%" (percent) characters after the Yahoo ...
How severe is CVE-2003-1135?
CVE-2003-1135 has been rated LOW with a CVSS base score of 2.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2003-1135?
Check the references section above for vendor advisories and patch information. Affected products include: Yahoo Messenger.