The Buddy icon file for AOL Instant Messenger (AIM) 4.3 through 5.5 is created in a predictable location, which may allow remote attackers to use a shell: URI to exploit other vulnerabilities that involve predictable locations.
References
Link | Resource |
---|---|
http://www.securityfocus.com/archive/1/354448 | Vendor Advisory |
http://www.securityfocus.com/bid/9698 | Exploit |
https://exchange.xforce.ibmcloud.com/vulnerabilities/15310 |
Configurations
Configuration 1 (hide)
|
Information
Published : 2004-12-30 21:00
Updated : 2017-07-10 18:31
NVD link : CVE-2004-2373
Mitre link : CVE-2004-2373
JSON object : View
CWE
Products Affected
aol
- instant_messenger