CVE-2006-3888

Name of the Vulnerable Software and Affected Versions America Online version 9.0 Security Edition

Description A buffer overflow issue exists in the AOL You've Got Pictures (YGP) Pic Downloader YGPPDownload ActiveX control, which can be exploited by remote attackers to execute arbitrary code. This is achieved by passing a long argument to the SetAlbumName method.

Recommendations For America Online version 9.0 Security Edition, consider disabling the YGPPDownload ActiveX control until a patch is available. Restrict access to the SetAlbumName method to minimize the risk of exploitation.