Boundary error in the YDPCTL.dll ActiveX control leading to stack buffer overflow and execution of arbitrary code.

Description:

The ActiveX control used by Yahoo! Widgets has been found to be vulnerable to a memory error that can allow a remote attacker to take control over a vulnerable system.

As this vulnerability affects the ActiveX control used by the Yahoo! Widgets / Konfabulator engine, only the Windows version is affected.

Mitigation:

Update to version 4.0.5 of the Yahoo! Widget / Konfabulator engine to avoid exploitation of this issue. Advanced users can disable the following CLSID for interim protection - 7EC7B6C5-25BD-4586-A641-D2ACBB6629DD

Updates:

http://widgets.yahoo.com/download/

Source:

http://help.yahoo.com/l/us/yahoo/widgets/security/security-08.html

Exploits:

Not Yet Identified