PT-2003-2448 · Aol · Aol Instant Messenger
Published
2003-12-31
·
Updated
2024-02-14
·
CVE-2003-1503
CVSS v2.0
10
High
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
AOL Instant Messenger (AIM) version 5.2.3292
Description
The issue allows remote attackers to execute arbitrary code via an aim:getfile URL with a long screen name. This is a result of a buffer overflow.
Recommendations
For AOL Instant Messenger (AIM) version 5.2.3292, update to a newer version that contains a fix for this issue.
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Aol Instant Messenger