Instant Messenger Security Vulnerabilities and Issues — Instant Messenger CVE List

Lucene search

AolInstant Messenger

6 matches found

CVE•added 2005/03/20 5:0 a.m.•45 views

CVE-2001-1417

AOL Instant Messenger (AIM) 4.7 allows remote attackers to cause a denial of service (application hang or crash) via a buddy icon GIF file whose length and width values are larger than the actual image data.

5CVSS7AI score0.02609EPSS

CVE•added 2005/03/20 5:0 a.m.•40 views

CVE-2001-1416

Multiple cross-site scripting (XSS) vulnerabilities in the log messages in certain Alpha versions of AOL Instant Messenger (AIM) 4.4 allow remote attackers to execute arbitrary web script or HTML via an image in the (1) DATA, (2) STYLE, or (3) BINARY tags.

5.1CVSS6.3AI score0.02327EPSS

CVE•added 2005/03/20 5:0 a.m.•40 views

CVE-2001-1418

AOL Instant Messenger (AIM) 4.7 allows remote attackers to cause a denial of service (application crash) via a malformed WAV file.

5CVSS6.9AI score0.01445EPSS

CVE•added 2005/03/20 5:0 a.m.•37 views

CVE-2001-1421

AOL Instant Messenger (AIM) 4.7 and earlier allows remote attackers to cause a denial of service (application crash) via a large number of different fonts followed by an HTML HR tag.

5CVSS6.9AI score0.02414EPSS

CVE•added 2005/03/20 5:0 a.m.•36 views

CVE-2001-1419

AOL Instant Messenger (AIM) 4.7.2480 and earlier allows remote attackers to cause a denial of service (application crash) via an instant message that contains a large amount of "

5CVSS6.9AI score0.07132EPSS

CVE•added 2005/03/13 5:0 a.m.•31 views

CVE-2002-1591

AOL Instant Messenger (AIM) 4.7.2480 adds free.aol.com to the Trusted Sites Zone in Internet Explorer without user approval, which could allow code from free.aol.com to bypass intended access restrictions.

7.5CVSS7.1AI score0.00689EPSS