Published: 23/11/2004 Updated: 11/07/2017

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Buffer overflow in the goaway function in the aim:goaway URI handler for AOL Instant Messenger (AIM) 5.5, including 5.5.3595, allows remote malicious users to execute arbitrary code via a long Away message.

Vulnerable Product	Search on Vulmon	Subscribe to Product
aol instant messenger 5.5
aol instant messenger 5.5.3415_beta
aol instant messenger 5.5.3595

/* CAN-2004-0636 */ /* * AIM Away Message Buffer Overflow Exploit * Exploit by John Bissell AKA HighT1mes * * Exploit: * ======== * drizzitc * * Vulnerable Software: * ==================== * - AIM 553588 * - AIM 553590 Beta * - AIM 553591 * - AIM 553595 * and a couple others versions * * If you wa ...

/* subject: local PoC exploit for AIM 553595 vendor: wwwaimcom cve: wwwcvemitreorg/cgi-bin/cvenamecgi?name=CAN-2004-0636 credits: Matt Murphy date: 10 August 2004 notes: exploits localy if an argument is supplied, otherwise prints the url offsets are based on exe/dll provided in ...

## # $Id: aim_goawayrb 9669 2010-07-03 03:13:45Z jduck $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' class Metas ...

NVD-CWE-Other http://www.idefense.com/application/poi/display?id=121&type=vulnerabilities http://secunia.com/advisories/12198/http://www.kb.cert.org/vuls/id/735966 https://exchange.xforce.ibmcloud.com/vulnerabilities/16926 https://nvd.nist.gov https://www.exploit-db.com/exploits/431/https://www.kb.cert.org/vuls/id/735966

CVE-2004-0636

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect