Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

AOL Instant Messenger AddBuddy Link Long ScreenName Parameter Overflow DoS

Medium

Synopsis

The remote host is vulnerable to a buffer overflow

Description

The remote host is running AOL Instant Messenger (AIM). A possible buffer overflow vulnerability exists in AIM. The condition is related to processing of malformed aim:AddBuddy hyperlinks. If a victim clinks on an AddBuddy hyperlink consisting of many comma delimited screen names, a crash occurs.

Solution

Upgrade to the latest version of AOL Instant Messenger