Vulnonym.org

CVE-2008-2111 - Beheaded Illustration

Description

The ActiveX Control (yNotifier.dll) in Yahoo! Assistant 3.6 and earlier allows remote attackers to execute arbitrary code via unspecified vectors in the Ynoifier COM object that trigger memory corruption.

Reference

http://secway.org/advisory/AD20080506EN.txt http://www.securityfocus.com/bid/29065 http://www.securitytracker.com/id?1020004 http://secunia.com/advisories/30115 http://www.vupen.com/english/advisories/2008/1471/references https://exchange.xforce.ibmcloud.com/vulnerabilities/42233