The GIF parser in ateimg32.dll in AOL Instant Messenger (AIM) 5.9.3797 and earlier allows remote attackers to cause a denial of service (crash) via a malformed buddy icon that causes an integer underflow in a loop counter variable.
References
Link | Resource |
---|---|
http://marc.info/?l=bugtraq&m=111816939928640&w=2 | Mailing List |
http://marc.info/?l=bugtraq&m=111817881214343&w=2 | Mailing List |
http://securitytracker.com/id?1014145 | Broken Link Third Party Advisory VDB Entry |
http://www.securityfocus.com/bid/13880 | Broken Link Third Party Advisory VDB Entry |
http://marc.info/?l=bugtraq&m=111816939928640&w=2 | Mailing List |
http://marc.info/?l=bugtraq&m=111817881214343&w=2 | Mailing List |
http://securitytracker.com/id?1014145 | Broken Link Third Party Advisory VDB Entry |
http://www.securityfocus.com/bid/13880 | Broken Link Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
AND |
|
History
20 Nov 2024, 23:58
Type | Values Removed | Values Added |
---|---|---|
References | () http://marc.info/?l=bugtraq&m=111816939928640&w=2 - Mailing List | |
References | () http://marc.info/?l=bugtraq&m=111817881214343&w=2 - Mailing List | |
References | () http://securitytracker.com/id?1014145 - Broken Link, Third Party Advisory, VDB Entry | |
References | () http://www.securityfocus.com/bid/13880 - Broken Link, Third Party Advisory, VDB Entry |
08 Feb 2024, 15:44
Type | Values Removed | Values Added |
---|---|---|
References | (BUGTRAQ) http://marc.info/?l=bugtraq&m=111817881214343&w=2 - Mailing List | |
References | (BUGTRAQ) http://marc.info/?l=bugtraq&m=111816939928640&w=2 - Mailing List | |
References | (SECTRACK) http://securitytracker.com/id?1014145 - Broken Link, Third Party Advisory, VDB Entry | |
References | (BID) http://www.securityfocus.com/bid/13880 - Broken Link, Third Party Advisory, VDB Entry | |
CWE | CWE-191 | |
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 7.5 |
CPE | cpe:2.3:a:aol:instant_messenger:5.2.3292:*:*:*:*:*:*:* cpe:2.3:a:aol:instant_messenger:5.1.3036:*:*:*:*:*:*:* cpe:2.3:a:aol:instant_messenger:5.5.3415_beta:*:*:*:*:*:*:* cpe:2.3:a:aol:instant_messenger:5.0.2938:*:*:*:*:*:*:* cpe:2.3:a:aol:instant_messenger:5.9.3797:*:*:*:*:*:*:* cpe:2.3:a:aol:instant_messenger:5.5.3595:*:*:*:*:*:*:* |
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* cpe:2.3:a:aol:aim:*:*:*:*:*:*:*:* |
First Time |
Aol aim
Microsoft Microsoft windows |
Information
Published : 2005-06-09 04:00
Updated : 2024-11-20 23:58
NVD link : CVE-2005-1891
Mitre link : CVE-2005-1891
CVE.ORG link : CVE-2005-1891
JSON object : View
Products Affected
aol
- aim
microsoft
- windows
CWE
CWE-191
Integer Underflow (Wrap or Wraparound)