Lucene search
K

39 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2001-0314

Malware in sbrugna...

7.5CVSS6.4AI score0.01977EPSS
Exploits0References3
CVE
CVE
added 2025/08/21 8:8 p.m.17 views

CVE-2010-10015

CVE-2010-10015 affects AOL software up to version 9.5, where Phobos.dll exposes Import() via Phobos.Playlist and suffers a stack-based buffer overflow on long string arguments. Exploitation requires a locally opened malicious HTML file, allowing code execution in the user context. The vulnerabili...

8.4CVSS8AI score0.0049EPSS
Exploits0References9
Vulnrichment
Vulnrichment
added 2025/08/21 8:8 p.m.4 views

CVE-2010-10015 AOL <= 9.5 Phobos.Playlist 'Import()' Stack-Based Buffer Overflow

AOL versions up to and including 9.5 includes an ActiveX control Phobos.dll that exposes a method called Import via the Phobos.Playlist COM object. This method is vulnerable to a stack-based buffer overflow when provided with an excessively long string argument. Exploitation allows remote attacke...

8.4CVSS8AI score0.0049EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/08/21 12:0 a.m.6 views

PT-2025-34284 · America Online · Phobos.Dll +3

Name of the Vulnerable Software and Affected Versions: AOL versions prior to 9.6 Description: AOL versions up to and including 9.5 include an ActiveX control Phobos.dll that exposes a method called Import via the Phobos.Playlist COM object. This method is vulnerable to a stack-based buffer overfl...

8.4CVSS7.2AI score0.0049EPSS
Exploits0References11
CNNVD
CNNVD
added 2025/08/21 12:0 a.m.4 views

AOL 安全漏洞

AOL is a web portal of the American company AOL. AOL 9.5 and prior versions have a security vulnerability that originates from a stack buffer overflow in the Import method of the Phobos.Playlist COM object, which could lead to the execution of arbitrary code...

8.4CVSS7.3AI score0.0049EPSS
Exploits0References11
CVE
CVE
added 2025/08/20 3:31 p.m.14 views

CVE-2011-10027

CVE-2011-10027 affects AOL Desktop 9.6. The vulnerability is a stack-based buffer overflow in the Tool\rich.rct component while parsing .rtx files, triggered by embedding an overly long string in a hyperlink tag and caused by unsafe strcpy usage. This can allow remote code execution when a user o...

8.4CVSS8.1AI score0.00476EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/08/20 12:0 a.m.6 views

PT-2025-34108 · Undefined · Undefined

AOL Desktop 9.6 contains a buffer overflow vulnerability in its Toolrich.rct component when parsing .rtx files. By embedding an overly long string in a hyperlink tag, an attacker can trigger a stack-based buffer overflow due to the use of unsafe strcpy operations. This allows remote attackers to...

8.4CVSS8.7AI score0.00476EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/03/10 12:0 a.m.6 views

AOL AIM Triton Security Breach

AOL AIM Triton is an instant messaging software from AOL. A security vulnerability exists in AOL AIM Triton version 1.0.4, which stems from a denial of service due to the parameter CSeq of the component Invite Handler...

5.3CVSS6.7AI score0.00726EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2022/05/20 12:0 a.m.23 views

Fedora: Security Advisory for pidgin (FEDORA-2022-4490dce823)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

5.9CVSS5.8AI score0.02419EPSS
Exploits0References2
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.11 views

America Online ICQ 5.1 ActiveX Control Remote Code Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/20930/info The America Online ICQ ActiveX Control is prone to a remote code-execution vulnerability. An attacker could exploit this issue simply by sending a message to a victim ICQ user. Successful exploits could allow t...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2012/08/30 12:0 a.m.27 views

Fedora Update for pidgin FEDORA-2012-10287

Check for the Version of pidgin OpenVAS Vulnerability Test Fedora Update for pidgin FEDORA-2012-10287 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

7.5CVSS0.06402EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2012/08/09 12:0 a.m.34 views

AOL dnUpdater ActiveX dnu.exe Init() Method Remote Code Execution

The remote host has an install of the AOL dnUpdater ActiveX control dnu.exe prior to version 1.1.25.1. As such, it reportedly does not properly verify the function pointer passed by the 'pData' argument of the control's 'Init' method. A remote attacker could exploit this vulnerability by tricking...

5.7AI score
Exploits0References2
OpenVAS
OpenVAS
added 2012/06/11 12:0 a.m.33 views

Fedora Update for pidgin FEDORA-2012-8686

Check for the Version of pidgin OpenVAS Vulnerability Test Fedora Update for pidgin FEDORA-2012-8686 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

5CVSS0.1AI score0.04697EPSS
Exploits5References2
OpenVAS
OpenVAS
added 2012/04/02 12:0 a.m.31 views

Fedora Update for pidgin FEDORA-2011-17558

Check for the Version of pidgin OpenVAS Vulnerability Test Fedora Update for pidgin FEDORA-2011-17558 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

5CVSS0.04697EPSS
Exploits3References2
Fedora
Fedora
added 2010/05/24 7:40 p.m.38 views

[SECURITY] Fedora 11 Update: pidgin-2.7.0-2.fc11

Pidgin allows you to talk to anyone using a variety of messaging protocols including AIM, MSN, Yahoo!, Jabber, Bonjour, Gadu-Gadu, ICQ, IRC, Novell Groupwise, QQ, Lotus Sametime, SILC, Simple and Zephyr. These protocols are implemented using a modular, easy to use design. To use a protocol, just...

10CVSS0.6AI score0.20295EPSS
Exploits18
Check Point Advisories
Check Point Advisories
added 2010/02/11 12:0 a.m.19 views

America Online ICQ ActiveX Control DownloadAgent Function Code Execution (CVE-2006-5650)

The AOL ICQ product is a messaging application widely used by home users and in small to medium size companies. The messenger application ships with various extra features in addition to its regular function of text message exchanges. One such feature introduced in the ICQ clients is the ability ...

7.5CVSS7.1AI score0.66368EPSS
Exploits9
OpenVAS
OpenVAS
added 2009/10/22 12:0 a.m.12 views

America Online (AOL) Detection (Windows SMB Login)

Detects the installed version of America Online AOL on Windows. The script logs in via smb, searches for America Online in the registry and gets the install location and extract version from the file. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a...

7.3AI score
Exploits0
Prion
Prion
added 2009/10/09 2:30 p.m.13 views

Design/Logic Flaw

Use-after-free vulnerability in the Sb.SuperBuddy.1 ActiveX control sb.dll in America Online AOL 9.5.0.1 allows remote attackers to trigger memory corruption or possibly execute arbitrary code via a malformed argument to the SetSuperBuddy method...

9.3CVSS8.5AI score0.08896EPSS
Exploits1References7Affected Software1
CVE
CVE
added 2009/10/09 2:18 p.m.48 views

CVE-2009-3658

The CVE-2009-3658 entry concerns AOL (America Online) 9.5.0.1, specifically the Sb.SuperBuddy.1 ActiveX control (sb.dll). A use-after-free in the SetSuperBuddy method leads to memory corruption and potential remote code execution. Public details across sources confirm RCE risk with this ActiveX c...

9.3CVSS9.2AI score0.08896EPSS
Exploits1References7Affected Software1
Positive Technologies
Positive Technologies
added 2009/10/09 12:0 a.m.6 views

PT-2009-5930 · Aol · America Online

Name of the Vulnerable Software and Affected Versions: America Online AOL version 9.5.0.1 Description: The issue is related to a use-after-free vulnerability in the Sb.SuperBuddy.1 ActiveX control, which allows remote attackers to trigger memory corruption or possibly execute arbitrary code. This...

9.3CVSS9.2AI score0.08896EPSS
Exploits1References10
Rows per page
Query Builder