Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aol vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2006-0526
The default configuration of the America Online (AOL) client software allows all users to modify a certain registry value that specifies a DLL file name, which might allow local users to gain privileges via a Trojan horse program.
Aol Aol Client Software 8.0
Aol Aol Client Software 9.0
5
CVSSv2
CVE-2002-0591
Directory traversal vulnerability in AOL Instant Messenger (AIM) 4.8 beta and previous versions allows remote malicious users to create arbitrary files and execute commands via a Direct Connection with an IMG tag with a SRC attribute that specifies the target filename.
Aol Instant Messenger 4.1
Aol Instant Messenger 4.6
Aol Instant Messenger 4.8 Beta
Aol Instant Messenger 4.2
Aol Instant Messenger 4.3
Aol Instant Messenger 4.4
Aol Instant Messenger 4.5
Aol Instant Messenger 4.0
Aol Instant Messenger 4.7
1 EDB exploit
10
CVSSv2
CVE-2002-0005
Buffer overflow in AOL Instant Messenger (AIM) 4.7.2480, 4.8.2616, and other versions allows remote malicious users to execute arbitrary code via a long argument in a game request (AddGame).
Aol Instant Messenger 4.5
Aol Instant Messenger 4.6
Aol Instant Messenger 4.3.2229
Aol Instant Messenger 4.4
Aol Instant Messenger 4.7
Aol Instant Messenger 4.7.2480
Aol Instant Messenger 4.3
Aol Instant Messenger 4.8.2616
1 EDB exploit
5
CVSSv2
CVE-2001-1419
AOL Instant Messenger (AIM) 4.7.2480 and previous versions allows remote malicious users to cause a denial of service (application crash) via an instant message that contains a large amount of "<!--" HTML comments.
Aol Instant Messenger 4.0
Aol Instant Messenger 4.6
Aol Instant Messenger 4.7
Aol Instant Messenger 4.3
Aol Instant Messenger 4.3.2229
Aol Instant Messenger 4.1
Aol Instant Messenger 4.2
Aol Instant Messenger 4.7.2480
Cerulean Studios Trillian 0.6351
Aol Instant Messenger 4.4
Aol Instant Messenger 4.5
5
CVSSv2
CVE-2002-1953
Heap-based buffer overflow in the goim handler of AOL Instant Messenger (AIM) 4.4 up to and including 4.8.2616 allows remote malicious users to cause a denial of service (crash) via escaping of the screen name parameter, which triggers the overflow when the user selects "Get...
Aol Instant Messenger 4.8.2646
Aol Instant Messenger 4.4
Aol Instant Messenger 4.5
Aol Instant Messenger 4.6
Aol Instant Messenger 4.7.2480
Aol Instant Messenger 4.7
Aol Instant Messenger 4.8.2616
7.5
CVSSv2
CVE-2006-5501
Buffer overflow in the AOL.PicDownloadCtrl.1 ActiveX control (YGPPicDownload.dll) 9.2.3.0 in America Online (AOL) 9.0 Security Edition allows remote malicious users to execute arbitrary code via the downloadFileDirectory property, a different vulnerability than CVE-2006-5502.
Aol Aol 9.0
7.2
CVSSv2
CVE-2006-0948
AOL 9.0 Security Edition revision 4184.2340, and probably other versions, uses insecure permissions (Everyone/Full Control) for the "America Online 9.0" directory, which allows local users to gain privileges by replacing critical files.
Aol Aol 9.0 4184.2340
7.5
CVSSv2
CVE-2006-5502
Heap-based buffer overflow in the AOL.PicDownloadCtrl.1 ActiveX control (YGPPicDownload.dll) 9.2.3.0 in America Online (AOL) 9.0 Security Edition allows remote malicious users to execute arbitrary code via the AddPictureNoAlbum method, a different vulnerability than CVE-2006-5501...
Aol Aol 9.0
9.3
CVSSv2
CVE-2006-5820
The LinkSBIcons method in the SuperBuddy ActiveX control (Sb.SuperBuddy.1) in America Online 9.0 Security Edition dereferences an arbitrary function pointer, which allows remote malicious users to execute arbitrary code via a modified pointer value.
Aol Aol 9.0
1 EDB exploit
2.6
CVSSv2
CVE-2002-1813
Directory traversal vulnerability in AOL Instant Messenger (AIM) 4.8.2790 allows remote malicious users to execute arbitrary programs by specifying the program in the href attribute of a link.
Aol Instant Messenger 4.8.2616
Aol Instant Messenger 4.8.2646
Aol Instant Messenger 5.0.2938
Aol Instant Messenger 4.7.2480
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »