AOL Instant Messenger AddBuddy Link Long ScreenName Parameter Overflow DoS
Medium Nessus Network Monitor Plugin ID 1248
SynopsisThe remote host is vulnerable to a buffer overflow
DescriptionThe remote host is running AOL Instant Messenger (AIM). A possible buffer overflow vulnerability exists in AIM. The condition is related to processing of malformed aim:AddBuddy hyperlinks. If a victim clinks on an AddBuddy hyperlink consisting of many comma delimited screen names, a crash occurs.
SolutionUpgrade to the latest version of AOL Instant Messenger