Yahoo! Messenger Unspecified ActiveX Control Buffer Overflow
In my organization, end-users love to install Yahoo! Messenger. Be warned; there's a new exploit on the loose:
http://secunia.com/advisories/23401/
Description:
A vulnerability has been reported in Yahoo!
Messenger, which potentially can be exploited by malicious people to
compromise a user's system.
The vulnerability is caused due to an unspecified error in an ActiveX
control and can be exploited to cause a buffer overflow. No further
information is currently available.
The vulnerability is reported in versions obtained prior to Nov 2, 2006.
Solution:
Update to the latest version.
http://messenger.yahoo.com/