CVE-2005-0243
First published: Thu Feb 17 2005(Updated: )
Yahoo! Messenger 6.0.0.1750, and possibly other versions before 6.0.0.1921, does not properly display long filenames in file dialog boxes, which could allow remote attackers to trick users into downloading and executing programs via file names containing a large number of spaces and multiple file extensions.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Yahoo Messenger | =5.6 | |
| Yahoo Messenger | =6.0.0.1750 | |
| Yahoo Messenger | =5.5 | |
| Yahoo Messenger | =5.6.0.1351 | |
| Yahoo Messenger | =6.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-historical
- collector/nvd-index
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/description
- agent/type
- agent/event
- agent/softwarecombine
- agent/remedy
- agent/last-modified-date
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/yahoo
- canonical/yahoo messenger
- version/yahoo messenger/5.6
- version/yahoo messenger/6.0.0.1750
- version/yahoo messenger/5.5
- version/yahoo messenger/5.6.0.1351
- version/yahoo messenger/6.0