Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aol aim vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-4901
The embedded Internet Explorer server control in AOL Instant Messenger (AIM) 6.1.41.2 and 6.2.32.1, AIM Pro, and AIM Lite does not properly constrain the use of mshtml.dll's web script and HTML functionality for incoming instant messages, which allows remote malicious users ...
Aol Aim Pro
Aol Instant Messenger 6.2.32.1
Aol Aim Lite
NA
CVE-2000-1094
Buffer overflow in AOL Instant Messenger (AIM) prior to 4.3.2229 allows remote malicious users to execute arbitrary commands via a "buddyicon" command with a long "src" argument.
Aol Aim
1 EDB exploit
2 Github repositories
7.5
CVSSv3
CVE-2005-1891
The GIF parser in ateimg32.dll in AOL Instant Messenger (AIM) 5.9.3797 and previous versions allows remote malicious users to cause a denial of service (crash) via a malformed buddy icon that causes an integer underflow in a loop counter variable.
Aol Aim
NA
CVE-2012-5816
AOL Instant Messenger (AIM) 1.0.1.2 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle malicious users to spoof SSL servers via an arbitrary valid c...
Aol Aim 1.0.1.2
NA
CVE-2000-1093
Buffer overflow in AOL Instant Messenger prior to 4.3.2229 allows remote malicious users to execute arbitrary commands via a long "goim" command.
Aol Instant Messenger 3.5.1808
Aol Instant Messenger 3.5.1856
Aol Instant Messenger 2.0 N
Aol Instant Messenger 2.5.1366
Aol Instant Messenger 2.5.1598
Aol Instant Messenger 4.0
Aol Instant Messenger 4.1.2010
Aol Instant Messenger 3.0.1470
Aol Instant Messenger 3.0 N
Aol Instant Messenger 4.2.1193
Aol Instant Messenger 3.5.1635
Aol Instant Messenger 3.5.1670
1 EDB exploit
NA
CVE-2004-0636
Buffer overflow in the goaway function in the aim:goaway URI handler for AOL Instant Messenger (AIM) 5.5, including 5.5.3595, allows remote malicious users to execute arbitrary code via a long Away message.
Aol Instant Messenger 5.5
Aol Instant Messenger 5.5.3415 Beta
Aol Instant Messenger 5.5.3595
3 EDB exploits
NA
CVE-2002-0592
AOL Instant Messenger (AIM) allows remote malicious users to steal files that are being transferred to other clients by connecting to port 4443 (Direct Connection) or port 5190 (file transfer) before the intended user.
Aol Instant Messenger 3.0.1415
Aol Instant Messenger 3.0.1470
Aol Instant Messenger 4.1
Aol Instant Messenger 4.1.2010
Aol Instant Messenger 2.0.912
Aol Instant Messenger 3.0 N
Aol Instant Messenger 3.5.1635
Aol Instant Messenger 4.2
Aol Instant Messenger 4.2.1193
Aol Instant Messenger 4.7.2480
Aol Instant Messenger 4.8.2616
Aol Instant Messenger 4.8.2646
Aol Instant Messenger 4.6
Aol Instant Messenger 4.7
Aol Instant Messenger 2.5.1366
Aol Instant Messenger 2.5.1598
Aol Instant Messenger 3.5.1856
Aol Instant Messenger 4.0
Aol Instant Messenger 4.4
Aol Instant Messenger 4.5
Aol Instant Messenger 2.0.996
Aol Instant Messenger 2.0 N
NA
CVE-2004-2373
The Buddy icon file for AOL Instant Messenger (AIM) 4.3 up to and including 5.5 is created in a predictable location, which may allow remote malicious users to use a shell: URI to exploit other vulnerabilities that involve predictable locations.
Aol Instant Messenger 4.8.2616
Aol Instant Messenger 4.8.2646
Aol Instant Messenger 4.7
Aol Instant Messenger 4.7.2480
Aol Instant Messenger 5.5
Aol Instant Messenger 5.5.3415 Beta
Aol Instant Messenger 4.4
Aol Instant Messenger 4.5
Aol Instant Messenger 4.6
Aol Instant Messenger 5.1.3036
Aol Instant Messenger 5.2.3292
Aol Instant Messenger 4.3
Aol Instant Messenger 4.3.2229
Aol Instant Messenger 4.8.2790
Aol Instant Messenger 5.0.2938
1 EDB exploit
NA
CVE-2002-0005
Buffer overflow in AOL Instant Messenger (AIM) 4.7.2480, 4.8.2616, and other versions allows remote malicious users to execute arbitrary code via a long argument in a game request (AddGame).
Aol Instant Messenger 4.5
Aol Instant Messenger 4.6
Aol Instant Messenger 4.3.2229
Aol Instant Messenger 4.4
Aol Instant Messenger 4.7
Aol Instant Messenger 4.7.2480
Aol Instant Messenger 4.3
Aol Instant Messenger 4.8.2616
1 EDB exploit
NA
CVE-2002-0785
AOL Instant Messenger (AIM) allows remote malicious users to cause a denial of service (crash) via an "AddBuddy" link with the ScreenName parameter set to a large number of comma-separated values, possibly triggering a buffer overflow.
Aol Instant Messenger 4.1
Aol Instant Messenger 4.1.2010
Aol Instant Messenger 4.2
Aol Instant Messenger 4.2.1193
Aol Instant Messenger 4.0
Aol Instant Messenger 4.3
Aol Instant Messenger 4.4
Aol Instant Messenger 4.6
Aol Instant Messenger 4.7
Aol Instant Messenger 4.7.2480
Aol Instant Messenger 4.8.2616
Aol Instant Messenger 4.3.2229
Aol Instant Messenger 4.5
Aol Instant Messenger 4.8.2646
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710
arbitrary
CVE-2024-5272
CVE-2024-2961
brute force
remote
CVE-2024-32944
CVE-2024-36241
CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »