CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2004-0636

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0410%
EPSS Percentile4.07th
Published2004年11月23日
Last Modified2026年4月16日

Vulnerability Description

Buffer overflow in the goaway function in the aim:goaway URI handler for AOL Instant Messenger (AIM) 5.5, including 5.5.3595, allows remote attackers to execute arbitrary code via a long Away message.

Affected Platforms (CPE)

📦
Aol

Instant Messenger

= 5.5
📦
Aol

Instant Messenger

= 5.5.3415_beta
📦
Aol

Instant Messenger

= 5.5.3595

References & Advisories

🔗 http://secunia.com/advisories/12198/
🔗 http://www.idefense.com/application/poi/display?id=121&type=vulnerabilities
🔗 http://www.kb.cert.org/vuls/id/735966
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/16926
🔗 http://secunia.com/advisories/12198/
🔗 http://www.idefense.com/application/poi/display?id=121&type=vulnerabilities
🔗 http://www.kb.cert.org/vuls/id/735966
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/16926

相關漏洞威脅

CVE-2003-150310.0

Buffer overflow in AOL Instant Messenger (AIM) 5.2.3292 allows remote attackers to execute arbitrary code via an aim:getfile URL w...

CVE-2002-000510.0

Buffer overflow in AOL Instant Messenger (AIM) 4.7.2480, 4.8.2616, and other versions allows remote attackers to execute arbitrary...

CVE-2007-38329.3

Buffer overflow in the AOL Instant Messenger (AIM) protocol handler in AIM.DLL in Cerulean Studios Trillian allows remote attacker...

CVE-2009-24049.3

Heap-based buffer overflow in a regular-expression parser in Mozilla Network Security Services (NSS) before 3.12.3, as used in Fir...