Yahoo Messenger flaw opens computers to hijacking
Last Updated: Friday, December 15, 2006 | 12:33 PM ET
CBC News
Related
External Links
(Note: CBC does not endorse and is not responsible for the content of external sites - links will open in new window)
Yahoo Inc. has issued a "highly critical" update to its popular Messenger online chat software after finding a flaw that could let an attacker hijack a computer running the program.
An alert issued Friday by Danish security company Secunia stated that the problem exists in all versions of the tool for Windows PCs that were downloaded before Nov. 2.
Users are being advised to update to the latest version of the software, Yahoo Messenger 8.1, available from Yahoo's website.
The problem, discovered by Yahoo, could let an attacker remotely run software on a machine over the internet, crash programs such as Internet Explorer, or force a person to be logged out of chat or the Messenger tool itself, according to the internet company's own alert, issued Dec. 8.
"These impacts could only be possible if an attacker is successful in prompting someone to view malicious HTML code, most likely executed by getting a person to visit their web page," Yahoo said in its security alert. "To our knowledge, there have been no known executable code exploits related to this issue."
The flaw lies in Messenger's ActiveX control, which can be forced to experience a so-called buffer overflow in which too much data is stored in a temporary area, causing the computer to crash or expose the system to attackers. ActiveX is a set of Microsoft technologies used to share information among different programs.
Secunia called the flaw 'highly critical" — its second-most severe rating on a five-level scale.
Share Tools
Top News Headlines
- SpaceX capsule nears space station for historic docking
- The privately bankrolled Dragon capsule approaches the International Space Station for a historic docking after sailing through a practice rendezvous the day before. more »
- Conservatives move again to have robocalls suits tossed
- The Conservative Party has filed a second motion to dismiss the robocalls lawsuits filed by the left-leaning Council of Canadians, calling council chairperson Maude Barlow a "virulent critic" of Prime Minister Stephen Harper who has "orchestrated" the litigation. more »
- Reclaiming the dead on Mt. Everest
- The difficulty, danger and expense of removing the bodies of climbers who died in Mount Everest's "death zone" mean most of the dead remain on the mountain as a stark reminder to other climbers of the risks. more »
- Teens share bullying tales in confession booth
- Raw stories about bullying emerged when a video booth was set up inside a Quebec high school. more »
Latest Technology & Science News Headlines
- Facebook unveils camera app for iPhone
- Facebook unveiled a photo-sharing application on Thursday that allows users to take pictures on their mobile device and post them directly to their Facebook accounts. more »
- Neil Armstrong grants rare interview to accountants organization
- Legendary astronaut Neil Armstrong, who was the first person to walk on the moon, has surprised the media establishment by granting a rare and comprehensive interview to an unexpected interviewer: the Certified Practicing Accountants of Australia. more »
- 'Safe' stem cell discovery unveiled in Calgary
- Scientists in Calgary say they have discovered a way to create stem cells by the millions more quickly and safely than ever before. more »
- Canadian Hurricane Centre predicts 9 to 15 storms in 2012
- The early arrival of a tropical storm off the U.S. east coast does not mean Eastern Canada should brace for a particularly active hurricane season, Canadian forecasters said Thursday. more »
Bob McDonald's Blog
Underground lab may solve cosmic mystery May. 18, 2012 4:22 PM A new astronomical observatory opened this week - one more than 2 kilometres below the ground in Sudbury, Ont. - that may finally answer the mystery of Dark Matter in the universe. SNOLAB will attempt to capture the elusive Dark Matter particles as they pass right through the Earth.
Quirks & Quarks
- May 26: Before the Lights Go Out May. 24, 2012 10:14 AM A new book, "Before the Lights Go Out: Conquering the Energy Crisis Before It Conquers Us", suggests that the unpredictable, unplanned, ad-hoc way our energy use developed in the past will shape our energy future.
Latest Features
- Reclaiming the dead on Mt. Everest
- Workers' EI history to affect claim under new rules
- New mom among dead in Aylmer triple stabbing
- Gatineau police to question suspect in multiple homicides
- Conservatives move again to have robocalls suits tossed
- Quebec faces mounting pressure amid student crisis
- Suspect arrested in decades old N.Y. missing boy case
- Teens share bullying tales in confession booth
- B.C. man fined $6,000 for feeding 'pot bears'
