-
January 9th, 2004, 07:09 AM
#1
Yahoo BoF
back in october there was an exploit that came out for Yahoo and i warned folks here about it. At that time i was told it was nothing to worry about because yahoo IM auto updates...not this time:
°º¤ø,¸¸,ø¤º°`°º¤ø,¸¸,ø¤°º¤ø,¸¸,ø¤º°°°º¤º°`°º¤ø
"I already contacted Yahoo couple days ago...
.......After reading your email, I removed my YIM and downloaded the new one
from their
website and you are right; the newest version 5.6.0.1358 is not vulnerable.
However,
there is NO WAY to upgrade from 5.6.0.xxxx to 5.6.0.1358 except you
reinstall
YIM; and of course Yahoo doesn't tell anybody about it either.
If you go to http://messenger.yahoo.com/messenger/security/ you will see
there is
no update for this vulnerability. Again, the only way to patch it is
reinstall YIM
°º¤ø,¸¸,ø¤º°`°º¤ø,¸¸,ø¤°º¤ø,¸¸,ø¤º°°°º¤º°`°º¤ø
read about it:
http://www.packetstormsecurity.org/0...es/yahooIM.txt
Bukhari:V3B48N826 “The Prophet said, ‘Isn’t the witness of a woman equal to half of that of a man?’ The women said, ‘Yes.’ He said, ‘This is because of the deficiency of a woman’s mind.’”
-
January 9th, 2004, 09:48 AM
#2
hmm.. a bit disturbing when yahoo doesn't respond.. I actually use YIM but only with a handful of trusted friends.. stopped using messengers except for rare times long ago. I think I won't be concerned right now but a few of my friends might be.. so thanks for the heads up.
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|