New sploit has been found in YIM (Yahoo! Instant Messenger)


Sploit Info


05. Threat Significance

Vulnerability #2 (above) demonstrates how potential attackers could replace or even visually replicate almost any YIM content and insert scripts into their own HTML that could be used to do almost anything on a YIM users machine. For example, it would not be too difficult to modify the demonstration exploit above to request a YIM user's ID and password and send it to any email address or Internet URL.

Minimum user intervention is required to exploit these vulnerabilities. Modifications of the ymsgr URLs provided could readily be hidden in HTML pages or emails with text or images enticing YIM users to click on them. Further, scripts could be used to load such ymsgr-exploit URLs into pop-up browser windows with no direct user intervention.

Given there are now somewhere between 13-65 million Yahoo! Messenger users worldwide (as described in the Summary above), the potential impact of this vulnerability poses a highly significant threat to users who do not soon upgrade their Yahoo! Messenger clients.




WE ALSO NEED A SECTION WHERE THIS TYPE OF TOPIC WOULD FIT BETTER, SUCH AS "RECENT THREATS" or "NEW SPLOITS" or "SECURITY RISK", i couldnt find anything that this thread would fit under so i put it here