Yahoo : Security Vulnerabilities, CVEs, Published In September 2007
Absolute path traversal vulnerability in a certain ActiveX control in the CYFT object in ft60.dll in Yahoo! Messenger 8.1.0.421 allows remote attackers to force a download, and create or overwrite arbitrary files via a full pathname in the second argument to the GetFile method.
Max CVSS
5.0
EPSS Score
3.79%
Published
2007-09-20
Updated
2017-09-29
1 vulnerabilities found