Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aol vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2007-5755
Multiple stack-based buffer overflows in the AOL AmpX ActiveX control in AmpX.dll 2.6.1.11 in AOL Radio allow remote malicious users to execute arbitrary code via long arguments to unspecified methods.
Aol Radio
7.5
CVSSv2
CVE-2000-1094
Buffer overflow in AOL Instant Messenger (AIM) prior to 4.3.2229 allows remote malicious users to execute arbitrary commands via a "buddyicon" command with a long "src" argument.
Aol Aim
1 EDB exploit
2 Github repositories
5
CVSSv2
CVE-2001-1421
AOL Instant Messenger (AIM) 4.7 and previous versions allows remote malicious users to cause a denial of service (application crash) via a large number of different fonts followed by an HTML HR tag.
Aol Instant Messenger
6.8
CVSSv2
CVE-2007-5124
The embedded Internet Explorer server control in AOL Instant Messenger (AIM) 6.5.3.12 and previous versions allows remote malicious users to execute arbitrary code via unspecified web script or HTML in an instant message, related to AIM's filtering of "specific tags and...
Aol Instant Messenger
7.5
CVSSv2
CVE-2006-5650
The ICQPhone.SipxPhoneManager ActiveX control in America Online ICQ 5.1 allows remote malicious users to download and execute arbitrary code via the DownloadAgent function, as demonstrated using an ICQ avatar.
Aol Icq 5.1
2 EDB exploits
1 Github repository
7.8
CVSSv2
CVE-2007-3350
AOL Instant Messenger (AIM) 6.1.32.1 on Windows XP allows remote malicious users to cause a denial of service (application hang) via a flood of spoofed SIP INVITE requests.
Aol Instant Messenger 6.1.32.1
5
CVSSv2
CVE-2009-4494
AOLserver 4.5.1 writes data to a log file without sanitizing non-printable characters, which might allow remote malicious users to modify a window's title, or possibly execute arbitrary commands or overwrite files, via an HTTP request containing an escape sequence for a term...
Aol Aolserver 4.5.1
1 EDB exploit
7.8
CVSSv2
CVE-2007-3437
AOL Instant Messenger (AIM) 6.1.32.1 on Windows XP allows remote malicious users to cause a denial of service (application crash) via a malformed header value in a SIP INVITE message, a different vulnerability than CVE-2007-3350.
Aol Instant Messenger 6.1.32.1
5
CVSSv2
CVE-2000-0190
AOL Instant Messenger (AIM) client allows remote malicious users to cause a denial of service via a message with a malformed ASCII value.
Aol Instant Messenger
5.8
CVSSv2
CVE-2012-5816
AOL Instant Messenger (AIM) 1.0.1.2 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle malicious users to spoof SSL servers via an arbitrary valid c...
Aol Aim 1.0.1.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49333
CVE-2024-33901
CVE-2024-36001
CVE-2024-2835
firewall
XPath injection
authentication bypass
CVE-2024-22120
CVE-2024-32002
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »