According to security company Secunia, both vulnerabilities occur due to boundary errors located in Activex controls and successful exploitation would allow the execution of arbitrary code.
– a boundary error in the YMP DataGrid ActiveX control (datagrid.dll) when handling arguments passed to the "AddImage()" and "AddButton()" methods can be exploited to cause a stack-based buffer overflow via an overly long argument.
– a boundary error in the Yahoo! Mediagrid ActiveX control (mediagridax.dll) when handling arguments passed to the "AddBitmap()" method can be exploited to cause a stack-based buffer overflow via an overly long argument.
Both vulnerabilities are confirmed in Yahoo! Music Jukebox version 2.2.2.056 and other versions may be affected too.