Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aim vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2003-1534
Cross-site scripting (XSS) vulnerability in jgb.php3 in Justice Guestbook 1.3 allows remote malicious users to inject arbitrary web script or HTML via the (1) name, (2) homepage, (3) aim, (4) yim, (5) location, and (6) comment variables.
Justice Media Guestbook
505
VMScore
CVE-2002-0591
Directory traversal vulnerability in AOL Instant Messenger (AIM) 4.8 beta and previous versions allows remote malicious users to create arbitrary files and execute commands via a Direct Connection with an IMG tag with a SRC attribute that specifies the target filename.
Aol Instant Messenger 4.1
Aol Instant Messenger 4.6
Aol Instant Messenger 4.8 Beta
Aol Instant Messenger 4.2
Aol Instant Messenger 4.3
Aol Instant Messenger 4.4
Aol Instant Messenger 4.5
Aol Instant Messenger 4.0
Aol Instant Messenger 4.7
1 EDB exploit
383
VMScore
CVE-2003-1554
Cross-site scripting (XSS) vulnerability in scozbook/add.php in ScozNet ScozBook 1.1 BETA allows remote malicious users to inject arbitrary web script or HTML via the (1) username, (2) useremail, (3) aim, (4) msn, (5) sitename and (6) siteaddy variables.
Scoznet Scozbook 1.1 Beta
383
VMScore
CVE-2007-1904
Directory traversal vulnerability in AOL Instant Messenger (AIM) 5.9 and previous versions, and ICQ 5.1 and probably earlier, allows user-assisted remote malicious users to write files to arbitrary locations via a .. (dot dot) in a filename in a file transfer operation.
Aol Icq
Aol Instant Messenger
445
VMScore
CVE-2009-0152
iChat in Apple Mac OS X 10.5 prior to 10.5.7 disables SSL for AOL Instant Messenger (AIM) communication in certain circumstances that are inconsistent with the Require SSL setting, which allows remote malicious users to obtain sensitive information by sniffing the network.
Apple Mac Os X
Apple Mac Os X Server
445
VMScore
CVE-2005-0874
Multiple buffer overflows in the (1) AIM, (2) MSN, (3) RSS, and other plug-ins for Trillian 2.0 allow remote web servers to cause a denial of service (application crash) via a long string in an HTTP 1.1 response header.
Cerulean Studios Trillian 2.0
454
VMScore
CVE-2001-1416
Multiple cross-site scripting (XSS) vulnerabilities in the log messages in certain Alpha versions of AOL Instant Messenger (AIM) 4.4 allow remote malicious users to execute arbitrary web script or HTML via an image in the (1) DATA, (2) STYLE, or (3) BINARY tags.
Aol Instant Messenger 4.4a
454
VMScore
CVE-2006-0629
Unspecified vulnerability in AOL Instant Messenger (AIM) 5.9.3861 allows user-assisted remote malicious users to cause a denial of service (client crash) and possibly execute arbitrary code by tricking the user into requesting Buddy Info about a long screen name, which might caus...
Aol Instant Messenger 5.9.3861
676
VMScore
CVE-2002-0457
Cross-site scripting vulnerability in signgbook.php for BG GuestBook 1.0 allows remote malicious users to execute arbitrary Javascript via encoded tags such as <, >, and & in fields such as (1) name, (2) email, (3) AIM screen name, (4) website, (5) location,...
Bg Guestbook Bg Guestbook 1.0
445
VMScore
CVE-2002-1953
Heap-based buffer overflow in the goim handler of AOL Instant Messenger (AIM) 4.4 up to and including 4.8.2616 allows remote malicious users to cause a denial of service (crash) via escaping of the screen name parameter, which triggers the overflow when the user selects "Get...
Aol Instant Messenger 4.8.2646
Aol Instant Messenger 4.4
Aol Instant Messenger 4.5
Aol Instant Messenger 4.6
Aol Instant Messenger 4.7.2480
Aol Instant Messenger 4.7
Aol Instant Messenger 4.8.2616
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »