CVE-2006-0948

2006-08-21T18:04:00
ID CVE-2006-0948
Type cve
Reporter cve@mitre.org
Modified 2018-10-18T16:29:00

Description

AOL 9.0 Security Edition revision 4184.2340, and probably other versions, uses insecure permissions (Everyone/Full Control) for the "America Online 9.0" directory, which allows local users to gain privileges by replacing critical files. AOL has released fixes to address this issue. These fixes can be automatically applied by logging in to the service.