Vulnerability Details CVE-2008-2111
The ActiveX Control (yNotifier.dll) in Yahoo! Assistant 3.6 and earlier allows remote attackers to execute arbitrary code via unspecified vectors in the Ynoifier COM object that trigger memory corruption.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.124
EPSS Ranking 93.5%
CVSS Severity
CVSS v2 Score 9.3
References
- http://secunia.com/advisories/30115
- http://secway.org/advisory/AD20080506EN.txt
- http://www.securityfocus.com/bid/29065
- http://www.securitytracker.com/id?1020004
- http://www.vupen.com/english/advisories/2008/1471/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42233
- http://secunia.com/advisories/30115
- http://secway.org/advisory/AD20080506EN.txt
- http://www.securityfocus.com/bid/29065
- http://www.securitytracker.com/id?1020004
- http://www.vupen.com/english/advisories/2008/1471/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42233
Products affected by CVE-2008-2111
-
cpe:2.3:a:yahoo:yahoo_assistant:*