Phuong Nguyen wrote: > Given there are now somewhere between 13-65 million > Yahoo! Messenger users worldwide (as described in the > Summary above), the potential impact of this > vulnerability poses a highly significant threat to > users who do not soon upgrade their Yahoo! Messenger > clients.
Or, if they're smart, simply disable the URL (use regedit to edit HKEY_CLASSES_ROOT\ymsgr\shell\open\command to something that doesn't exist). Cheers, Ben. -- http://www.apache-ssl.org/ben.html http://www.thebunker.net/ "There is no limit to what a man can do or how far he can go if he doesn't mind who gets the credit." - Robert Woodruff
