CyberSec.Space Logo
Back to CVE Browser

CVE-2004-0636

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0410%
EPSS Percentile4.07th
PublishedNov 23, 2004
Last ModifiedApr 16, 2026

Vulnerability Description

Buffer overflow in the goaway function in the aim:goaway URI handler for AOL Instant Messenger (AIM) 5.5, including 5.5.3595, allows remote attackers to execute arbitrary code via a long Away message.

Affected Platforms (CPE)

πŸ“¦
Aol

Instant Messenger

= 5.5
πŸ“¦
Aol

Instant Messenger

= 5.5.3415_beta
πŸ“¦
Aol

Instant Messenger

= 5.5.3595

References & Advisories

πŸ”— http://secunia.com/advisories/12198/
πŸ”— http://www.idefense.com/application/poi/display?id=121&type=vulnerabilities
πŸ”— http://www.kb.cert.org/vuls/id/735966
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/16926
πŸ”— http://secunia.com/advisories/12198/
πŸ”— http://www.idefense.com/application/poi/display?id=121&type=vulnerabilities
πŸ”— http://www.kb.cert.org/vuls/id/735966
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/16926

Related Vulnerabilities

CVE-2003-150310.0

Buffer overflow in AOL Instant Messenger (AIM) 5.2.3292 allows remote attackers to execute arbitrary code via an aim:getfile URL w...

CVE-2002-000510.0

Buffer overflow in AOL Instant Messenger (AIM) 4.7.2480, 4.8.2616, and other versions allows remote attackers to execute arbitrary...

CVE-2007-38329.3

Buffer overflow in the AOL Instant Messenger (AIM) protocol handler in AIM.DLL in Cerulean Studios Trillian allows remote attacker...

CVE-2009-24049.3

Heap-based buffer overflow in a regular-expression parser in Mozilla Network Security Services (NSS) before 3.12.3, as used in Fir...