4 matches found
VulnCheck KEV: CVE-2006-5820
The LinkSBIcons method in the SuperBuddy ActiveX control Sb.SuperBuddy.1 in America Online 9.0 Security Edition dereferences an arbitrary function pointer, which allows remote attackers to execute arbitrary code via a modified pointer value...
AOL SuperBuddy ActiveX fails to properly validate method arguments
Overview The AOL SuperBuddy ActiveX control does not properly validate arguments to the LinkSBIcons method. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description The AOL SuperBuddy ActiveX control Sb.SuperBuddy.1 is a compone...
CVE-2006-5820
The LinkSBIcons method in the SuperBuddy ActiveX control Sb.SuperBuddy.1 in America Online 9.0 Security Edition dereferences an arbitrary function pointer, which allows remote attackers to execute arbitrary code via a modified pointer value...
CVE-2006-5820
Summary (CVE-2006-5820): AOL's SuperBuddy ActiveX control (Sb.SuperBuddy.1) exposes the LinkSBIcons() method. The vulnerability arises when an attacker-provided address is dereferenced as a function pointer, enabling remote code execution. Impact is remote, unauthenticated, requiring a user to vi...