CVSS: 7.5EPSS: 30%CPEs: 1EXPL: 0CVE-2006-3888
https://notcve.org/view.php?id=CVE-2006-3888
Buffer overflow in AOL You've Got Pictures (YGP) Pic Downloader YGPPDownload ActiveX control (AOL.PicDownloadCtrl.1, YGPPicDownload.dll), as used in America Online 9.0 Security Edition, allows remote attackers to execute arbitrary code via a long argument to the SetAlbumName method. Desbordamiento de búfer en el control ActiveX de AOL You've Got Pictures (YGP) Pic Downloader YGPPDownload (AOL.PicDownloadCtrl.1, YGPPicDownload.dll), como el utilizado en la Edición de Seguridad America Online 9.0, permite a atacantes remotos ejecutar código de su elección mediante el paso de un argumento largo al método SetAlbumName. • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=420 http://secunia.com/advisories/22304 http://securitytracker.com/id?1017024 http://www.kb.cert.org/vuls/id/661524 http://www.kb.cert.org/vuls/id/MIMG-6MUUJ8 http://www.securityfocus.com/bid/20425 http://www.securityfocus.com/bid/20472 http://www.vupen.com/english/advisories/2006/3967 https://exchange.xforce.ibmcloud.com/vulnerabilities/29410 https://exchange.xforce.ibmcloud.com/vulnerabilities/29494 •