PT-2001-2512 · Aol · Aol Instant Messenger

Published

2001-10-06

Updated

2017-07-11

CVE-2001-1418

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions AOL Instant Messenger (AIM) version 4.7

Description The issue allows remote attackers to cause a denial of service, resulting in an application crash, by sending a malformed WAV file.

Recommendations For AOL Instant Messenger (AIM) version 4.7, avoid using the application to open WAV files from untrusted sources until a fix is available. As a temporary workaround, consider disabling the handling of WAV files in the application to minimize the risk of exploitation.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2001-1418

Affected Products

Aol Instant Messenger

PT-2001-2512 · Aol · Aol Instant Messenger

CVE-2001-1418

Related Identifiers

Affected Products

References · 5