Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0636

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2004-0636
Last Modified 10 Sep 2008 03:27:04
Published 23 Nov 2004 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0636

Summary

Buffer overflow in the goaway function in the aim:goaway URI handler for AOL Instant Messenger (AIM) 5.5, including 5.5.3595, allows remote attackers to execute arbitrary code via a long Away message.

Vulnerable Systems

Application

  • Aol Instant Messenger 5.5

  • Aol Instant Messenger 5.5.3415 Beta

  • Aol Instant Messenger 5.5.3595


References

CERT-VN - VU#735966

MISC - http://www.idefense.com/application/poi/display?id=121&type=vulnerabilities

SECUNIA - 12198

XF - aim-away-bo(16926)


Last Updated: 27 May 2016 10:38:41