Yahoo's add-ons are exploited to dominate PCs

Yahoo service users install additional freeware such as weather reports, gasoline prices . are at risk because remote attackers can run malicious code on their PC through a vulnerability. set to " serious ".

Security firm Secunia (Denmark) said this happens because of an error in the ActiveX driver of the YDPCTL.dll 2007.4.13 version when processing the 'GetComponentVersion ()' process . If an attacker puts a string of characters larger than 512 bytes through the exploited system, they will cause a buffer overflow, then execute the binary code on the machine.

Picture 1 of Yahoo's add-ons are exploited to dominate PCs Secunia said that even if the error was confirmed in Yahoo Widgets 4.0.3 version, other Yahoo Widgets versions could be affected. Users protect themselves by updating the latest version of Yahoo Widgets 4.0.5 here.

Widgets are additional software to receive information right on the user's desktop, from radio news to calendar, games, stock prices .