icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

AOL Instant Messenger Remote Malformed GIF DoS

High

Synopsis

The remote host is vulnerable to a Denial of Service (DoS) attack.

Description

The remote host is running AOL Instant Messenger (AIM). Versions 5.9.3797 and lower are reported vulnerable to a remote Denial of Service (DoS) attack. An attacker exploiting this flaw would only need to be able to initiate an GIF image exchange with a vulnerable AOL IM client. Successful exploitation would result in the Instant Messenger client crashing.

Solution

Upgrade or patch according to vendor recommendations.