Yahoo Messenger's Webcam invites may cause trouble

By Robert Vamosi, CNET News.com
Friday, August 17, 2007 12:25 PM

There is a new zero-day attack in progress against Yahoo Messenger users. The instant messaging solicitation invites users to open their Webcam.

However, the code used in this China-based exploit causes a heap overflow to be triggered when the target accepts a Webcam invitation. That means a remote attacker could execute malicious code on a compromised machine.

The McAfee security blog recommends the following: do not accept Webcam invites from untrusted sources until a patch is released, and block outgoing traffic on TCP port 5100 on your firewall until a patch is released.

Yahoo has been informed and said it is working on a patch.

This article first appeared as a blog posting on News.com.


WORTHWHILE?

0

0 votes
Blog

Talkback 1 comments

i canot talk with my friends and canot see and the page not the same
Posted by amgad ali on Saturday, August 18 2007 05:57 AM


Tech Jobs Now!

Search for your ideal tech job:

News from Countries/Region

10 open source projects worth checking out

Open Source

The open source field is pretty crowded, but certain projects stand above the rest. Here are 10 tools and solutions you don't want to overlook.


Read more »



Will technology divide us further?

Blog thumbnail

So I finally watched 2012 over the weekend, but the film left me feeling extremely agitated.

The possibility that the world may meet its watery end in three years didn't..... by Eileen Yu

Read more »

Tags

  1. attack
  2. authentication and encryption
  3. blog
  4. data security
  5. e - mail
  6. hacking
  7. internet
  8. malware
  9. microsoft corp.
  10. network
  11. network security
  12. pc security
  13. researcher
  14. security
  15. security management
  16. software
  17. spam and phishing
  18. symantec corp.
  19. viruses and worms
  20. web