- Joined
- Mar 5, 2002
- Messages
- 25,751
- Reaction score
- 1,210
An AV vendor has been able to reproduce a vulnerability in Yahoo! Messenger version 8.1.0.413 based on information provided in some security forums in China.
All that is required to infect a system using the vulnerability is to convince a Yahoo Messenger user to accept a webcam invitation.
The AV vendor reports that this latest vulnerability is not the same as the Webcam vulnerability that was patched back in June.
It is recommended that:
1) NEVER accept a webcam invitations from untrusted sources
2) Block outgoing traffic on TCP 5100
Source: http://www.avertlabs.com/research/blog/index.php/2007/08/15/more-on-the-yahoo-messenger-webcam-0day/
All that is required to infect a system using the vulnerability is to convince a Yahoo Messenger user to accept a webcam invitation.
The AV vendor reports that this latest vulnerability is not the same as the Webcam vulnerability that was patched back in June.
It is recommended that:
1) NEVER accept a webcam invitations from untrusted sources
2) Block outgoing traffic on TCP 5100
Source: http://www.avertlabs.com/research/blog/index.php/2007/08/15/more-on-the-yahoo-messenger-webcam-0day/