AOL Instant Messenger AddExternalApp Remote Buffer Overflow
Critical Nessus Network Monitor Plugin ID 1249
SynopsisThe remote host is vulnerable to a buffer overflow
DescriptionThe remote host is running AOL Instant Messenger (AIM). AIM is vulnerable to a buffer overflow when an AddExternalApp request is received with a TLV greater than 0x2711. This vulnerability could allow a remote user to execute arbitrary code with the privaleges of the user running the AIM client.
SolutionUpgrade to the latest version of AOL Instant Messenger.