Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aol vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-0316
Buffer overflow in YGPPicFinder.DLL in AOL You've Got Pictures (YGP) Picture Finder Tool ActiveX Control, as used in AOL 8.0, 8.0 Plus, and 9.0 Classic, allows remote malicious users to execute arbitrary code via unspecified vectors.
Aol Aol Client Software 8.0
Aol Aol Client Software 9.0
NA
CVE-2002-0591
Directory traversal vulnerability in AOL Instant Messenger (AIM) 4.8 beta and previous versions allows remote malicious users to create arbitrary files and execute commands via a Direct Connection with an IMG tag with a SRC attribute that specifies the target filename.
Aol Instant Messenger 4.1
Aol Instant Messenger 4.6
Aol Instant Messenger 4.8 Beta
Aol Instant Messenger 4.2
Aol Instant Messenger 4.3
Aol Instant Messenger 4.4
Aol Instant Messenger 4.5
Aol Instant Messenger 4.0
Aol Instant Messenger 4.7
1 EDB exploit
NA
CVE-2002-0005
Buffer overflow in AOL Instant Messenger (AIM) 4.7.2480, 4.8.2616, and other versions allows remote malicious users to execute arbitrary code via a long argument in a game request (AddGame).
Aol Instant Messenger 4.5
Aol Instant Messenger 4.6
Aol Instant Messenger 4.3.2229
Aol Instant Messenger 4.4
Aol Instant Messenger 4.7
Aol Instant Messenger 4.7.2480
Aol Instant Messenger 4.3
Aol Instant Messenger 4.8.2616
1 EDB exploit
NA
CVE-2001-1419
AOL Instant Messenger (AIM) 4.7.2480 and previous versions allows remote malicious users to cause a denial of service (application crash) via an instant message that contains a large amount of "<!--" HTML comments.
Aol Instant Messenger 4.0
Aol Instant Messenger 4.6
Aol Instant Messenger 4.7
Aol Instant Messenger 4.3
Aol Instant Messenger 4.3.2229
Aol Instant Messenger 4.1
Aol Instant Messenger 4.2
Aol Instant Messenger 4.7.2480
Cerulean Studios Trillian 0.6351
Aol Instant Messenger 4.4
Aol Instant Messenger 4.5
NA
CVE-2002-1953
Heap-based buffer overflow in the goim handler of AOL Instant Messenger (AIM) 4.4 up to and including 4.8.2616 allows remote malicious users to cause a denial of service (crash) via escaping of the screen name parameter, which triggers the overflow when the user selects "Get...
Aol Instant Messenger 4.8.2646
Aol Instant Messenger 4.4
Aol Instant Messenger 4.5
Aol Instant Messenger 4.6
Aol Instant Messenger 4.7.2480
Aol Instant Messenger 4.7
Aol Instant Messenger 4.8.2616
NA
CVE-2006-0948
AOL 9.0 Security Edition revision 4184.2340, and probably other versions, uses insecure permissions (Everyone/Full Control) for the "America Online 9.0" directory, which allows local users to gain privileges by replacing critical files.
Aol Aol 9.0 4184.2340
NA
CVE-2006-5501
Buffer overflow in the AOL.PicDownloadCtrl.1 ActiveX control (YGPPicDownload.dll) 9.2.3.0 in America Online (AOL) 9.0 Security Edition allows remote malicious users to execute arbitrary code via the downloadFileDirectory property, a different vulnerability than CVE-2006-5502.
Aol Aol 9.0
NA
CVE-2006-5502
Heap-based buffer overflow in the AOL.PicDownloadCtrl.1 ActiveX control (YGPPicDownload.dll) 9.2.3.0 in America Online (AOL) 9.0 Security Edition allows remote malicious users to execute arbitrary code via the AddPictureNoAlbum method, a different vulnerability than CVE-2006-5501...
Aol Aol 9.0
NA
CVE-2006-5820
The LinkSBIcons method in the SuperBuddy ActiveX control (Sb.SuperBuddy.1) in America Online 9.0 Security Edition dereferences an arbitrary function pointer, which allows remote malicious users to execute arbitrary code via a modified pointer value.
Aol Aol 9.0
1 EDB exploit
NA
CVE-2002-1813
Directory traversal vulnerability in AOL Instant Messenger (AIM) 4.8.2790 allows remote malicious users to execute arbitrary programs by specifying the program in the href attribute of a link.
Aol Instant Messenger 4.8.2616
Aol Instant Messenger 4.8.2646
Aol Instant Messenger 5.0.2938
Aol Instant Messenger 4.7.2480
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »