Yahoo! Messenger 6.0.0.1750, and possibly other versions before 6.0.0.1921, does not properly display long filenames in file dialog boxes, which could allow remote attackers to trick users into downloading and executing programs via file names containing a large number of spaces and multiple file extensions.
References
Link | Resource |
---|---|
http://secunia.com/advisories/13712 | Patch Vendor Advisory |
http://secunia.com/secunia_research/2005-2/advisory/ | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2005-02-18T05:00:00
Updated: 2021-06-15T16:38:02
Reserved: 2005-02-08T00:00:00
Link: CVE-2005-0243
JSON object: View
NVD Information
Status : Analyzed
Published: 2005-02-17T05:00:00.000
Modified: 2008-09-05T20:45:44.277
Link: CVE-2005-0243
JSON object: View
Redhat Information
No data.
CWE