CVE-2014-7216

NONE EPSS 93.2%
Published Sep 11, 201510y ago · Modified Jun 17, 20262w ago
Find Similar
Published Sep 11, 2015 10y ago
Last Modified Jun 17, 2026 2w ago

Description

Multiple stack-based buffer overflows in Yahoo! Messenger 11.5.0.228 and earlier allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the (1) shortcut or (2) title keys in an emoticons.xml file.

Threat Intelligence

EPSS Exploit Probability
93.2% percentile
Exploit & Patch Status
Public Exploit Known
No Patch Available

Weaknesses 1

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer Memory Safety

Affected Products 1

VendorProductVersionRange
yahoomessenger* ≤11.5.0.228

References 6

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.