Vulnerability Details CVE-2004-0636
Buffer overflow in the goaway function in the aim:goaway URI handler for AOL Instant Messenger (AIM) 5.5, including 5.5.3595, allows remote attackers to execute arbitrary code via a long Away message.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.785
EPSS Ranking 99.0%
CVSS Severity
CVSS v2 Score 10.0
References
- http://secunia.com/advisories/12198/
- http://www.idefense.com/application/poi/display?id=121&type=vulnerabilities
- http://www.kb.cert.org/vuls/id/735966
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16926
- http://secunia.com/advisories/12198/
- http://www.idefense.com/application/poi/display?id=121&type=vulnerabilities
- http://www.kb.cert.org/vuls/id/735966
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16926
Products affected by CVE-2004-0636
-
cpe:2.3:a:aol:instant_messenger:5.5
-
cpe:2.3:a:aol:instant_messenger:5.5.3415_beta
-
cpe:2.3:a:aol:instant_messenger:5.5.3595