blob: 0e300276cde8812aa352cc02929820ac25050b81 (
plain)
1
2
3
4
5
6
7
8
9
10
|
A quick note for fans of Yahoo Messenger: the company has released an update which [patches a vulnerability][1] in Yahoo's webcam video chat feature. This is the second time Yahoo has updated Messenger in recent months.
The exploit, which was revealed last week and already exists in the wild, triggers a heap overflow if you accepts a webcam invitation from a malicious party.
Once initiated the remote attacker could execute malicious code your machine.
If you use Yahoo Messenger and haven't [downloaded the latest version][2], we recommend doing so, though we can't help wondering just who exactly accepts an unsolicited video chat request in the first place?
[1]: http://messenger.yahoo.com/security_update.php?id=082107
[2]: http://messenger.yahoo.com/download.php
|
