Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Logfile feature in Yahoo! Messenger 5.x through 6.0 can be activated by a YMSGR: URL and writes all output to a single ypager.log file, even when there are multiple users, and does not properly warn later users that the feature has been enabled, which allows local users to obtain sensitive information from other users.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Yahoo!Messenger 漏洞
Vulnerability Description
Yahoo!Messenger 5.x至6.0版本中的Logfile特性可以由一个YMSGR: URL激活并且该特性即便系统存在多个用户也在单个ypager.log文件中写所有输出,且没有适当地警示后来的用户此特性已经启用,这使得本地用户可以获取其它用户的敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A