The Buddy icon file for AOL Instant Messenger (AIM) 4.3 up to and including 5.5 is created in a predictable location, which may allow remote malicious users to use a shell: URI to exploit other vulnerabilities that involve predictable locations.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
aol instant messenger 4.8.2616 |
||
aol instant messenger 4.8.2646 |
||
aol instant messenger 4.7 |
||
aol instant messenger 4.7.2480 |
||
aol instant messenger 5.5 |
||
aol instant messenger 5.5.3415_beta |
||
aol instant messenger 4.4 |
||
aol instant messenger 4.5 |
||
aol instant messenger 4.6 |
||
aol instant messenger 5.1.3036 |
||
aol instant messenger 5.2.3292 |
||
aol instant messenger 4.3 |
||
aol instant messenger 4.3.2229 |
||
aol instant messenger 4.8.2790 |
||
aol instant messenger 5.0.2938 |
Vulmon