AOL AIM 'sipXtapi.dll' Multiple Buffer Overflow Vulnerabilities

High Nessus Plugin ID 42304


The detected instant messenger client is affected by multiple buffer overflow vulnerabilities.


AOL AIM is affected by multiple buffer overflow vulnerabilities because it fails to perform adequate boundary checks on user-supplied data.

Successful exploits may allow attackers to execute arbitrary code with the privileges of the user running the software or cause an application crash.


Upgrade to AOL AIM or later.

See Also

Plugin Details

Severity: High

ID: 42304

File Name: aim_sip_buffer_overflow.nasl

Version: $Revision: 1.10 $

Type: local

Agent: windows

Family: Windows

Published: 2009/10/29

Modified: 2016/11/11

Dependencies: 18431

Risk Information

Risk Factor: High


Base Score: 9.3

Temporal Score: 6.9

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:U/RL:OF/RC:ND

Vulnerability Information

CPE: cpe:/a:aol:aim

Required KB Items: AIM/version

Exploit Available: false

Exploit Ease: No known exploits are available

Patch Publication Date: 2008/06/11

Vulnerability Publication Date: 2008/06/10

Reference Information

BID: 36849

OSVDB: 59368, 59369