Computerworld News reports that Yahoo Instant Messenger contains security flaw. “The buffer overrun vulnerability was found in a file named “yauto.dll,” an ActiveX component of Yahoo Messenger software in versions up to 5.6.0.1347.”
The article includes suggestions on what to do to avoid the problems, as well as advice on disabling ActiveX controls in your browser and Active Scripting, an IE only feature. Better yet, don’t use IE.