39 matches found
EUVD-2001-0314
Malware in sbrugna...
CVE-2010-10015
CVE-2010-10015 affects AOL software up to version 9.5, where Phobos.dll exposes Import() via Phobos.Playlist and suffers a stack-based buffer overflow on long string arguments. Exploitation requires a locally opened malicious HTML file, allowing code execution in the user context. The vulnerabili...
CVE-2010-10015 AOL <= 9.5 Phobos.Playlist 'Import()' Stack-Based Buffer Overflow
AOL versions up to and including 9.5 includes an ActiveX control Phobos.dll that exposes a method called Import via the Phobos.Playlist COM object. This method is vulnerable to a stack-based buffer overflow when provided with an excessively long string argument. Exploitation allows remote attacke...
PT-2025-34284 · America Online · Phobos.Dll +3
Name of the Vulnerable Software and Affected Versions: AOL versions prior to 9.6 Description: AOL versions up to and including 9.5 include an ActiveX control Phobos.dll that exposes a method called Import via the Phobos.Playlist COM object. This method is vulnerable to a stack-based buffer overfl...
AOL 安全漏洞
AOL is a web portal of the American company AOL. AOL 9.5 and prior versions have a security vulnerability that originates from a stack buffer overflow in the Import method of the Phobos.Playlist COM object, which could lead to the execution of arbitrary code...
CVE-2011-10027
CVE-2011-10027 affects AOL Desktop 9.6. The vulnerability is a stack-based buffer overflow in the Tool\rich.rct component while parsing .rtx files, triggered by embedding an overly long string in a hyperlink tag and caused by unsafe strcpy usage. This can allow remote code execution when a user o...
PT-2025-34108 · Undefined · Undefined
AOL Desktop 9.6 contains a buffer overflow vulnerability in its Toolrich.rct component when parsing .rtx files. By embedding an overly long string in a hyperlink tag, an attacker can trigger a stack-based buffer overflow due to the use of unsafe strcpy operations. This allows remote attackers to...
AOL AIM Triton Security Breach
AOL AIM Triton is an instant messaging software from AOL. A security vulnerability exists in AOL AIM Triton version 1.0.4, which stems from a denial of service due to the parameter CSeq of the component Invite Handler...
Fedora: Security Advisory for pidgin (FEDORA-2022-4490dce823)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
America Online ICQ 5.1 ActiveX Control Remote Code Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/20930/info The America Online ICQ ActiveX Control is prone to a remote code-execution vulnerability. An attacker could exploit this issue simply by sending a message to a victim ICQ user. Successful exploits could allow t...
Fedora Update for pidgin FEDORA-2012-10287
Check for the Version of pidgin OpenVAS Vulnerability Test Fedora Update for pidgin FEDORA-2012-10287 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...
AOL dnUpdater ActiveX dnu.exe Init() Method Remote Code Execution
The remote host has an install of the AOL dnUpdater ActiveX control dnu.exe prior to version 1.1.25.1. As such, it reportedly does not properly verify the function pointer passed by the 'pData' argument of the control's 'Init' method. A remote attacker could exploit this vulnerability by tricking...
Fedora Update for pidgin FEDORA-2012-8686
Check for the Version of pidgin OpenVAS Vulnerability Test Fedora Update for pidgin FEDORA-2012-8686 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...
Fedora Update for pidgin FEDORA-2011-17558
Check for the Version of pidgin OpenVAS Vulnerability Test Fedora Update for pidgin FEDORA-2011-17558 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...
[SECURITY] Fedora 11 Update: pidgin-2.7.0-2.fc11
Pidgin allows you to talk to anyone using a variety of messaging protocols including AIM, MSN, Yahoo!, Jabber, Bonjour, Gadu-Gadu, ICQ, IRC, Novell Groupwise, QQ, Lotus Sametime, SILC, Simple and Zephyr. These protocols are implemented using a modular, easy to use design. To use a protocol, just...
America Online ICQ ActiveX Control DownloadAgent Function Code Execution (CVE-2006-5650)
The AOL ICQ product is a messaging application widely used by home users and in small to medium size companies. The messenger application ships with various extra features in addition to its regular function of text message exchanges. One such feature introduced in the ICQ clients is the ability ...
America Online (AOL) Detection (Windows SMB Login)
Detects the installed version of America Online AOL on Windows. The script logs in via smb, searches for America Online in the registry and gets the install location and extract version from the file. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a...
Design/Logic Flaw
Use-after-free vulnerability in the Sb.SuperBuddy.1 ActiveX control sb.dll in America Online AOL 9.5.0.1 allows remote attackers to trigger memory corruption or possibly execute arbitrary code via a malformed argument to the SetSuperBuddy method...
CVE-2009-3658
The CVE-2009-3658 entry concerns AOL (America Online) 9.5.0.1, specifically the Sb.SuperBuddy.1 ActiveX control (sb.dll). A use-after-free in the SetSuperBuddy method leads to memory corruption and potential remote code execution. Public details across sources confirm RCE risk with this ActiveX c...
PT-2009-5930 · Aol · America Online
Name of the Vulnerable Software and Affected Versions: America Online AOL version 9.5.0.1 Description: The issue is related to a use-after-free vulnerability in the Sb.SuperBuddy.1 ActiveX control, which allows remote attackers to trigger memory corruption or possibly execute arbitrary code. This...