https://www.exploit-db.com/exploits/23293
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200312-393

Yahoo!Messenger5.6版本存在缓冲区溢出漏洞。远程攻击者可以借助在YahooID后添写超多”%”（百分号）的文件发送请求（sendfile）导致服务拒绝（崩溃）。

source: Yahoo! Messenger File Transfer Buffer Overrun Vulnerability

Yahoo! Messenger is prone to a remotely exploitable buffer overrun vulnerability. An attacker may trigger this condition by initiating a malformed 'sendfile' request, which the victim user must then accept. This will reportedly result in an access violation error, which is likely due to memory corruption.

An attacker may theoretically exploit this condition to execute arbitrary code on a client system. This condition can be exploited via a malicious 'sendfile' link. 

YMSGR:sendfile?[victim_yahooID]+%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%&c%c:[somefile]

来源:BID
名称:8894
链接:http://www.securityfocus.com/bid/8894
来源:BUGTRAQ
名称:20031026BufferOverflowinYahoomessengerClient
链接:http://www.securityfocus.com/archive/1/342472