Integer overflow in the CYImage::LoadJPG method in YImage.dll in Yahoo! Messenger before 11.5.0.155, when photo sharing is enabled, might allow remote attackers to execute arbitrary code via a crafted JPG image that triggers a heap-based buffer overflow.
2012-01-19T15:55:00.990
2025-04-11T00:51:21.963
Deferred
CVSSv2: 5.1 (MEDIUM)
AV:N/AC:H/Au:N/C:P/I:P/A:P
4.9
6.4
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | yahoo | messenger | ≤ 11.5.0.152 | Yes |
| Application | yahoo | messenger | 0.99.17-1 | Yes |
| Application | yahoo | messenger | 1.0 | Yes |
| Application | yahoo | messenger | 1.0.4 | Yes |
| Application | yahoo | messenger | 1.0.6 | Yes |
| Application | yahoo | messenger | 2.0.1.4 | Yes |
| Application | yahoo | messenger | 3.0 | Yes |
| Application | yahoo | messenger | 3.0.1 | Yes |
| Application | yahoo | messenger | 3.0.1 | Yes |
| Application | yahoo | messenger | 3.5 | Yes |
| Application | yahoo | messenger | 4.0 | Yes |
| Application | yahoo | messenger | 4.1 | Yes |
| Application | yahoo | messenger | 5.0 | Yes |
| Application | yahoo | messenger | 5.0.1046 | Yes |
| Application | yahoo | messenger | 5.0.1065 | Yes |
| Application | yahoo | messenger | 5.0.1232 | Yes |
| Application | yahoo | messenger | 5.5 | Yes |
| Application | yahoo | messenger | 5.5.1249 | Yes |
| Application | yahoo | messenger | 5.6 | Yes |
| Application | yahoo | messenger | 5.6.0.1347 | Yes |
| Application | yahoo | messenger | 5.6.0.1351 | Yes |
| Application | yahoo | messenger | 5.6.0.1355 | Yes |
| Application | yahoo | messenger | 5.6.0.1356 | Yes |
| Application | yahoo | messenger | 5.6.0.1358 | Yes |
| Application | yahoo | messenger | 6.0 | Yes |
| Application | yahoo | messenger | 6.0.0.1643 | Yes |
| Application | yahoo | messenger | 6.0.0.1750 | Yes |
| Application | yahoo | messenger | 6.0.0.1921 | Yes |
| Application | yahoo | messenger | 6.1 | Yes |
| Application | yahoo | messenger | 7.0 | Yes |
| Application | yahoo | messenger | 7.0.0.426 | Yes |
| Application | yahoo | messenger | 7.0.0.437 | Yes |
| Application | yahoo | messenger | 7.0.438 | Yes |
| Application | yahoo | messenger | 7.5 | Yes |
| Application | yahoo | messenger | 7.5.0.814 | Yes |
| Application | yahoo | messenger | 8.0 | Yes |
| Application | yahoo | messenger | 8.0.0.505 | Yes |
| Application | yahoo | messenger | 8.0.0.508 | Yes |
| Application | yahoo | messenger | 8.0.0.701 | Yes |
| Application | yahoo | messenger | 8.0.0.716 | Yes |
| Application | yahoo | messenger | 8.0.0.863 | Yes |
| Application | yahoo | messenger | 8.0.1 | Yes |
| Application | yahoo | messenger | 8.0_2005.1.1.4 | Yes |
| Application | yahoo | messenger | 8.1 | Yes |
| Application | yahoo | messenger | 8.1.0.195 | Yes |
| Application | yahoo | messenger | 8.1.0.209 | Yes |
| Application | yahoo | messenger | 8.1.0.239 | Yes |
| Application | yahoo | messenger | 8.1.0.244 | Yes |
| Application | yahoo | messenger | 8.1.0.249 | Yes |
| Application | yahoo | messenger | 8.1.0.401 | Yes |
| Application | yahoo | messenger | 8.1.0.402 | Yes |
| Application | yahoo | messenger | 8.1.0.413 | Yes |
| Application | yahoo | messenger | 8.1.0.416 | Yes |
| Application | yahoo | messenger | 8.1.0.419 | Yes |
| Application | yahoo | messenger | 8.1.0.421 | Yes |
| Application | yahoo | messenger | 9.0.0.797 | Yes |
| Application | yahoo | messenger | 9.0.0.907 | Yes |
| Application | yahoo | messenger | 9.0.0.922 | Yes |
| Application | yahoo | messenger | 9.0.0.1389 | Yes |
| Application | yahoo | messenger | 9.0.0.1912 | Yes |
| Application | yahoo | messenger | 9.0.0.2018 | Yes |
| Application | yahoo | messenger | 9.0.0.2034 | Yes |
| Application | yahoo | messenger | 9.0.0.2112 | Yes |
| Application | yahoo | messenger | 9.0.0.2123 | Yes |
| Application | yahoo | messenger | 9.0.0.2128 | Yes |
| Application | yahoo | messenger | 9.0.0.2133 | Yes |
| Application | yahoo | messenger | 9.0.0.2136 | Yes |
| Application | yahoo | messenger | 9.0.0.2152 | Yes |
| Application | yahoo | messenger | 9.0.0.2160 | Yes |
| Application | yahoo | messenger | 9.0.0.2161 | Yes |
| Application | yahoo | messenger | 9.0.0.2162 | Yes |
| Application | yahoo | messenger | 10.0.0.331 | Yes |
| Application | yahoo | messenger | 10.0.0.525 | Yes |
| Application | yahoo | messenger | 10.0.0.542 | Yes |
| Application | yahoo | messenger | 10.0.0.1102 | Yes |
| Application | yahoo | messenger | 10.0.0.1241 | Yes |
| Application | yahoo | messenger | 10.0.0.1258 | Yes |
| Application | yahoo | messenger | 10.0.0.1264 | Yes |
| Application | yahoo | messenger | 10.0.0.1267 | Yes |
| Application | yahoo | messenger | 10.0.0.1270 | Yes |
| Application | yahoo | messenger | 11.0.0.1751 | Yes |
| Application | yahoo | messenger | 11.0.0.2009 | Yes |
| Application | yahoo | messenger | 11.0.0.2014 | Yes |