9.3
CVE-2008-2111
- EPSS 5.39%
- Veröffentlicht 07.05.2008 23:20:00
- Zuletzt bearbeitet 16.06.2026 22:53:07
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The ActiveX Control (yNotifier.dll) in Yahoo! Assistant 3.6 and earlier allows remote attackers to execute arbitrary code via unspecified vectors in the Ynoifier COM object that trigger memory corruption.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Yahoo ≫ Yahoo Assistant Version <= 3.6
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 5.39% | 0.916 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.3 | 8.6 | 10 |
AV:N/AC:M/Au:N/C:C/I:C/A:C
|
http://secunia.com/advisories/30115
http://secway.org/advisory/AD20080506EN.txt
http://www.securityfocus.com/bid/29065
http://www.securitytracker.com/id?1020004
http://www.vupen.com/english/advisories/2008/1471/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/42233