• On mySimon: Three Colors Trilogy
September 19, 2007 1:25 PM PDT

Zero-day exploits attack Yahoo, AOL instant messengers

by Robert Vamosi
  • Font size
  • Print
  • 2 comments

Zero-day exploit codes targeting Yahoo and AOL instant-messenger services could put frequent IM users at risk to new attacks.

A non-vendor disclosed vulnerability within Yahoo Messenger has been exploited by two different code releases Wednesday. This is the third security glitch for Yahoo Messenger in as many months. There is no workaround or patch available yet for these exploits.

A second non-vendor disclosed vulnerability in AOL Instant Messenger targets how users are notified of new IMs. Security vendor Secunia recommends that current AIM users disable that option until a patch is available.

ZDNet blogger Ryan Naraine has more information and links to the exploit codes.

As CNET's resident security expert, Robert Vamosi has been interviewed on the BBC, CNN, MSNBC, and other outlets to share his knowledge about the latest online threats and to offer advice on personal and corporate security. Listen to his podcast at securitybites.cnet.com or e-mail Robert with your questions and comments.
Topics:

Security

Tags:

security,

Yahoo,

Yahoo Messenger,

AOL,

AIM,

Zero Day

Share:
Digg
Del.icio.us
Reddit
Recent posts from News Blog
Nvidia puts NForce chipset development on hold
Opera 10 browser is here
Neil Young Archives Blu-ray: Rip off?
Acronis revises survey results about backup habits
Acronis miscalculates data on users' bad backup habits
Flickr co-founder presses beta button
Comcast, Sony open retail store
Cox to try coaxing the Internet into submission
Related
Symantec confirms zero-day Acrobat, Reader attack
Firefox, Adobe top buggiest-software list
Adobe to patch zero-day Reader, Acrobat hole
CNET News Daily Podcast: Google gets into the link-shrinking biz
Microsoft plugs zero-day IE hole
CNET News Daily Podcast: Facebook readies new privacy requirements
Adobe investigating Reader, Acrobat exploit reports
Using Facebook and Twitter safely
Add a Comment (Log in or register)
Mirabilis' ICQ used to be the best--- until AOL took it
by JCPayne September 25, 2007 1:42 AM PDT
...over and let it turn rife with SPAM... Everybody used to love that service....
Reply to this comment
by Kateg00 March 2, 2009 12:41 PM PST
That sucks. This is why I use an encrypted IM, so that my files say safe and sound. It's called Brosix and I really enjoy using it, not only for my piece of mind, but also because I don't end up with the annoying chat bots that the have on AOL.
Reply to this comment
advertisement

Five New Year's resolutions for Google

Stakes are high as Google attempts to maintain one of the Internet's greatest cash machines while pushing into new and risky markets.
• Android event set for Jan. 5

For eBay sellers, a holiday hamster hangover

The gift frenzy over Zhu Zhu Pets leaves some power sellers feeling like they've just run a marathon--but the steep price tags lead to some impressive profits.

About News Blog

Recent posts on technology, trends, and more.

Add this feed to your online news reader

advertisement
advertisement

Inside CNET News

Scroll Left Scroll Right
News
News site map
Latest headlines
Contact News
News staff
Corrections
CNET blogs
Popular topics
Apple iPhone
Apple iPod
Cell phones
CES 2010
GPS
LCD TV
CNET sites
CNET Site map
CNET TV
Downloads
News
Reviews
Shopper.com
More information
Newsletters
CNET Mobile
Customer Help Center
RSS
CNET Widgets
About CNET