Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aol instant messenger vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2002-1591
AOL Instant Messenger (AIM) 4.7.2480 adds free.aol.com to the Trusted Sites Zone in Internet Explorer without user approval, which could allow code from free.aol.com to bypass intended access restrictions.
Aol Instant Messenger 4.7.2480
7.5
CVSSv2
CVE-2000-1093
Buffer overflow in AOL Instant Messenger prior to 4.3.2229 allows remote malicious users to execute arbitrary commands via a long "goim" command.
Aol Instant Messenger 3.5.1808
Aol Instant Messenger 3.5.1856
Aol Instant Messenger 2.0 N
Aol Instant Messenger 2.5.1366
Aol Instant Messenger 2.5.1598
Aol Instant Messenger 4.0
Aol Instant Messenger 4.1.2010
Aol Instant Messenger 3.0.1470
Aol Instant Messenger 3.0 N
Aol Instant Messenger 4.2.1193
Aol Instant Messenger 3.5.1635
Aol Instant Messenger 3.5.1670
1 EDB exploit
7.5
CVSSv2
CVE-2000-1094
Buffer overflow in AOL Instant Messenger (AIM) prior to 4.3.2229 allows remote malicious users to execute arbitrary commands via a "buddyicon" command with a long "src" argument.
Aol Aim
1 EDB exploit
2 Github repositories
6.8
CVSSv2
CVE-2007-5124
The embedded Internet Explorer server control in AOL Instant Messenger (AIM) 6.5.3.12 and previous versions allows remote malicious users to execute arbitrary code via unspecified web script or HTML in an instant message, related to AIM's filtering of "specific tags and...
Aol Instant Messenger
5.8
CVSSv2
CVE-2012-5816
AOL Instant Messenger (AIM) 1.0.1.2 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle malicious users to spoof SSL servers via an arbitrary valid c...
Aol Aim 1.0.1.2
5.8
CVSSv2
CVE-2007-4901
The embedded Internet Explorer server control in AOL Instant Messenger (AIM) 6.1.41.2 and 6.2.32.1, AIM Pro, and AIM Lite does not properly constrain the use of mshtml.dll's web script and HTML functionality for incoming instant messages, which allows remote malicious users ...
Aol Aim Pro
Aol Instant Messenger 6.2.32.1
Aol Aim Lite
5.1
CVSSv2
CVE-2006-0629
Unspecified vulnerability in AOL Instant Messenger (AIM) 5.9.3861 allows user-assisted remote malicious users to cause a denial of service (client crash) and possibly execute arbitrary code by tricking the user into requesting Buddy Info about a long screen name, which might caus...
Aol Instant Messenger 5.9.3861
5.1
CVSSv2
CVE-2001-1416
Multiple cross-site scripting (XSS) vulnerabilities in the log messages in certain Alpha versions of AOL Instant Messenger (AIM) 4.4 allow remote malicious users to execute arbitrary web script or HTML via an image in the (1) DATA, (2) STYLE, or (3) BINARY tags.
Aol Instant Messenger 4.4a
5
CVSSv2
CVE-2009-0152
iChat in Apple Mac OS X 10.5 prior to 10.5.7 disables SSL for AOL Instant Messenger (AIM) communication in certain circumstances that are inconsistent with the Require SSL setting, which allows remote malicious users to obtain sensitive information by sniffing the network.
Apple Mac Os X
Apple Mac Os X Server
5
CVSSv2
CVE-2007-3833
The AOL Instant Messenger (AIM) protocol handler in Cerulean Studios Trillian allows remote malicious users to create files with arbitrary contents via certain aim: URIs, as demonstrated by a URI that begins with the "aim: &c:\" substring and contains a full pathnam...
Cerulean Studios Trillian 3.1.6.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »