14 DAY TRIAL // Vulnerability Lab researchers released a proof-of-concept video to reveal a buffer overflow issue present in Yahoo Messenger, the popular instant messaging client.
The high severity security hole was identified by Manideep, also known as z3r0 erR0R, who proved that when users try to send an image file on chat rooms in a certain way, the application crashes.
While Yahoo Messenger does not allow customers to drag and drop files into group chat rooms, if the file is copied and pasted, the program crashes. It's uncertain if Yahoo has been informed of the vulnerability.
A similar proof-of-concept video was released a few days ago by another Vulnerability Lab expert, Aditya Gupta, who demonstrated that by utilizing a cleverly designed game, a cybercriminal could trick the user into making arbitrary Google+ posts, trapping him in a sophisticated clickjacking scheme.