Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aol instant messenger vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-5816
AOL Instant Messenger (AIM) 1.0.1.2 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle malicious users to spoof SSL servers via an arbitrary valid c...
Aol Aim 1.0.1.2
NA
CVE-2009-2404
Heap-based buffer overflow in a regular-expression parser in Mozilla Network Security Services (NSS) prior to 3.12.3, as used in Firefox, Thunderbird, SeaMonkey, Evolution, Pidgin, and AOL Instant Messenger (AIM), allows remote SSL servers to cause a denial of service (applicatio...
Mozilla Network Security Services 3.12.3
7.5
CVSSv3
CVE-2009-0152
iChat in Apple Mac OS X 10.5 prior to 10.5.7 disables SSL for AOL Instant Messenger (AIM) communication in certain circumstances that are inconsistent with the Require SSL setting, which allows remote malicious users to obtain sensitive information by sniffing the network.
Apple Mac Os X
Apple Mac Os X Server
NA
CVE-2007-5124
The embedded Internet Explorer server control in AOL Instant Messenger (AIM) 6.5.3.12 and previous versions allows remote malicious users to execute arbitrary code via unspecified web script or HTML in an instant message, related to AIM's filtering of "specific tags and...
Aol Instant Messenger
NA
CVE-2007-4901
The embedded Internet Explorer server control in AOL Instant Messenger (AIM) 6.1.41.2 and 6.2.32.1, AIM Pro, and AIM Lite does not properly constrain the use of mshtml.dll's web script and HTML functionality for incoming instant messages, which allows remote malicious users ...
Aol Aim Pro
Aol Instant Messenger 6.2.32.1
Aol Aim Lite
NA
CVE-2007-3832
Buffer overflow in the AOL Instant Messenger (AIM) protocol handler in AIM.DLL in Cerulean Studios Trillian allows remote malicious users to execute arbitrary code via a malformed aim: URI, as demonstrated by a long URI beginning with the aim:///#1111111/ substring.
Cerulean Studios Trillian 3.1.6.0
1 EDB exploit
NA
CVE-2007-3833
The AOL Instant Messenger (AIM) protocol handler in Cerulean Studios Trillian allows remote malicious users to create files with arbitrary contents via certain aim: URIs, as demonstrated by a URI that begins with the "aim: &c:\" substring and contains a full pathnam...
Cerulean Studios Trillian 3.1.6.0
NA
CVE-2007-3437
AOL Instant Messenger (AIM) 6.1.32.1 on Windows XP allows remote malicious users to cause a denial of service (application crash) via a malformed header value in a SIP INVITE message, a different vulnerability than CVE-2007-3350.
Aol Instant Messenger 6.1.32.1
NA
CVE-2007-3350
AOL Instant Messenger (AIM) 6.1.32.1 on Windows XP allows remote malicious users to cause a denial of service (application hang) via a flood of spoofed SIP INVITE requests.
Aol Instant Messenger 6.1.32.1
NA
CVE-2007-1904
Directory traversal vulnerability in AOL Instant Messenger (AIM) 5.9 and previous versions, and ICQ 5.1 and probably earlier, allows user-assisted remote malicious users to write files to arbitrary locations via a .. (dot dot) in a filename in a file transfer operation.
Aol Icq
Aol Instant Messenger
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »