2 matches found
CVE-2006-5820
Summary (CVE-2006-5820): AOL's SuperBuddy ActiveX control (Sb.SuperBuddy.1) exposes the LinkSBIcons() method. The vulnerability arises when an attacker-provided address is dereferenced as a function pointer, enabling remote code execution. Impact is remote, unauthenticated, requiring a user to vi...
CVE-2006-0948
CVE-2006-0948 concerns AOL 9.0 Security Edition revision 4184.2340 (and potentially other versions) where the installer/directory permissions grant Everyone Full Control on the America Online 9.0 directory, enabling local users to replace or manipulate critical files. Root cause is insecure defau...