Directory traversal vulnerability in AOL Instant Messenger (AIM) 5.9 and earlier, and ICQ 5.1 and probably earlier, allows user-assisted remote attackers to write files to arbitrary locations via a .. (dot dot) in a filename in a file transfer operation.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2007-04-10 16:19
Updated : 2017-07-28 18:31
NVD link : CVE-2007-1904
Mitre link : CVE-2007-1904
JSON object : View
CWE
Products Affected
aol
- icq
- instant_messenger