Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aol vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv2
CVE-2007-4901
The embedded Internet Explorer server control in AOL Instant Messenger (AIM) 6.1.41.2 and 6.2.32.1, AIM Pro, and AIM Lite does not properly constrain the use of mshtml.dll's web script and HTML functionality for incoming instant messages, which allows remote malicious users ...
Aol Aim Pro
Aol Instant Messenger 6.2.32.1
Aol Aim Lite
5
CVSSv2
CVE-2001-0205
Directory traversal vulnerability in AOLserver 3.2 and previous versions allows remote malicious users to read arbitrary files by inserting "..." into the requested pathname, a modified .. (dot dot) attack.
Aol Aol Server 3.2
1 EDB exploit
7.5
CVSSv2
CVE-2002-0100
AOL AOLserver 3.4.2 Win32 allows remote malicious users to bypass authentication and read password-protected files via a URL that directly references the file.
Aol Aol Server 3.4.2
7.5
CVSSv2
CVE-2001-0314
Buffer overflow in www.tol module in America Online (AOL) 5.0 may allow remote malicious users to cause a denial of service, and possibly execute arbitrary commands, via a long URL in a link.
Aol Aol Server 5.0
10
CVSSv2
CVE-2004-0636
Buffer overflow in the goaway function in the aim:goaway URI handler for AOL Instant Messenger (AIM) 5.5, including 5.5.3595, allows remote malicious users to execute arbitrary code via a long Away message.
Aol Instant Messenger 5.5
Aol Instant Messenger 5.5.3415 Beta
Aol Instant Messenger 5.5.3595
3 EDB exploits
5
CVSSv2
CVE-2002-2169
Cross-site scripting vulnerability AOL Instant Messenger (AIM) 4.5 and 4.7 for MacOS and Windows allows remote malicious users to conduct unauthorized activities, such as adding buddies and groups to a user's buddy list, via a URL with a META HTTP-EQUIV="refresh" t...
Aol Instant Messenger 4.7
Aol Instant Messenger 4.5
Aol Instant Messenger 4.7.2480
1 EDB exploit
7.2
CVSSv2
CVE-2005-2597
AOL Client Software 9.0 uses insecure permissions for its installation path, which allows local users to execute arbitrary code with SYSTEM privileges by replacing ACSD.exe with a malicious program.
Aol Aol Client Software 9.0
7.8
CVSSv2
CVE-2007-1767
Unspecified vulnerability in (1) Deskbar.dll and (2) Toolbar.dll in AOL 9.0 before February 2007 allows remote malicious users to cause a denial of service (browser crash) via unknown vectors.
Aol Aol Client Software 9.0
4.3
CVSSv2
CVE-2007-1904
Directory traversal vulnerability in AOL Instant Messenger (AIM) 5.9 and previous versions, and ICQ 5.1 and probably earlier, allows user-assisted remote malicious users to write files to arbitrary locations via a .. (dot dot) in a filename in a file transfer operation.
Aol Icq
Aol Instant Messenger
9.3
CVSSv2
CVE-2007-5755
Multiple stack-based buffer overflows in the AOL AmpX ActiveX control in AmpX.dll 2.6.1.11 in AOL Radio allow remote malicious users to execute arbitrary code via long arguments to unspecified methods.
Aol Radio
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »