cb
cvebase
.
~
/
products
/
yahoo
/
widgets
Search CVEs, products, detections…
⌘K
pipeline live
Digest
Docs
Home
/
Products
/
yahoo
/
Yahoo Widgets
Yahoo Widgets vulnerabilities
1 known vulnerability affecting
yahoo/widgets
.
Track
Total CVEs
1
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL
1
Vulnerabilities
Sort
Most important
Highest Priority
Highest EPSS
Highest CVSS
Newest
Oldest
Page 1 of 1
CVE-2007-4034
P3
CRITICAL
CVSS 9.3
PoC
≤ 4.0.5
2007-07-27
CVE-2007-4034 [CRITICAL] CWE-119 CVE-2007-4034: Stack-based buffer overflow in the YDPCTL.YDPControl.1 (aka Yahoo! Installer Plugin for Widgets) Act Stack-based buffer overflow in the YDPCTL.YDPControl.1 (aka Yahoo! Installer Plugin for Widgets) ActiveX control before 2007.7.13.3 (20070620) in YDPCTL.dll in Yahoo! Widgets before 4.0.5 allows remote attackers to execute arbitrary code via a long argument to the GetComponentVersion method. NOTE: some of these details are obtained from third party
nvd