Aol Aim vulnerabilities
3 known vulnerabilities affecting aol/aim.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2000-1094P4HIGHCVSS 7.5PoCfixed in 4.3.22292001-01-09
CVE-2000-1094 [HIGH] CWE-120 CVE-2000-1094: Buffer overflow in AOL Instant Messenger (AIM) before 4.3.2229 allows remote attackers to execute ar
Buffer overflow in AOL Instant Messenger (AIM) before 4.3.2229 allows remote attackers to execute arbitrary commands via a "buddyicon" command with a long "src" argument.
nvd
CVE-2012-5816P4MEDIUMCVSS 5.8v1.0.1.22012-11-04
CVE-2012-5816 [MEDIUM] CWE-20 CVE-2012-5816: AOL Instant Messenger (AIM) 1.0.1.2 does not verify that the server hostname matches a domain name i
AOL Instant Messenger (AIM) 1.0.1.2 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.
nvd
CVE-2005-1891P4HIGHCVSS 7.5≤ 5.9.37972005-06-09
CVE-2005-1891 [HIGH] CWE-191 CVE-2005-1891: The GIF parser in ateimg32.dll in AOL Instant Messenger (AIM) 5.9.3797 and earlier allows remote att
The GIF parser in ateimg32.dll in AOL Instant Messenger (AIM) 5.9.3797 and earlier allows remote attackers to cause a denial of service (crash) via a malformed buddy icon that causes an integer underflow in a loop counter variable.
nvd