Yahoo BoF
Results 1 to 2 of 2

Thread: Yahoo BoF

  1. #1
    Senior Member
    Join Date
    Nov 2001
    Posts
    4,786

    Yahoo BoF

    back in october there was an exploit that came out for Yahoo and i warned folks here about it. At that time i was told it was nothing to worry about because yahoo IM auto updates...not this time:

    ,,`,,,,`


    "I already contacted Yahoo couple days ago...
    .......After reading your email, I removed my YIM and downloaded the new one
    from their
    website and you are right; the newest version 5.6.0.1358 is not vulnerable.
    However,
    there is NO WAY to upgrade from 5.6.0.xxxx to 5.6.0.1358 except you
    reinstall
    YIM; and of course Yahoo doesn't tell anybody about it either.

    If you go to http://messenger.yahoo.com/messenger/security/ you will see
    there is
    no update for this vulnerability. Again, the only way to patch it is
    reinstall YIM

    ,,`,,,,`

    read about it:

    http://www.packetstormsecurity.org/0...es/yahooIM.txt
    Bukhari:V3B48N826 The Prophet said, Isnt the witness of a woman equal to half of that of a man? The women said, Yes. He said, This is because of the deficiency of a womans mind.

  2. #2
    Banned
    Join Date
    Jun 2002
    Posts
    289
    hmm.. a bit disturbing when yahoo doesn't respond.. I actually use YIM but only with a handful of trusted friends.. stopped using messengers except for rare times long ago. I think I won't be concerned right now but a few of my friends might be.. so thanks for the heads up.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •