VYPR
Unrated severityNVD Advisory· Published May 19, 2005· Updated Jun 16, 2026

CVE-2005-1671

CVE-2005-1671

Description

The Logfile feature in Yahoo! Messenger 5.x through 6.0 can be activated by a YMSGR: URL and writes all output to a single ypager.log file, even when there are multiple users, and does not properly warn later users that the feature has been enabled, which allows local users to obtain sensitive information from other users.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5
  • Yahoo/Messenger5 versions
    cpe:2.3:a:yahoo:messenger:5.5:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:yahoo:messenger:5.5:*:*:*:*:*:*:*
    • cpe:2.3:a:yahoo:messenger:5.6:*:*:*:*:*:*:*
    • cpe:2.3:a:yahoo:messenger:5.6.0.1351:*:*:*:*:*:*:*
    • cpe:2.3:a:yahoo:messenger:6.0:*:*:*:*:*:*:*
    • (no CPE)range: 5.x - 6.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.