CVSS: 10.0EPSS: 3%CPEs: 2EXPL: 4CVE-2001-1067 – AOLServer 3 - 'Authentication String' Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2001-1067
31 Aug 2001 — Buffer overflow in AOLserver 3.0 allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via an HTTP request with a long Authorization header. • https://www.exploit-db.com/exploits/21089 •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2001-0314
https://notcve.org/view.php?id=CVE-2001-0314
04 Apr 2001 — Buffer overflow in www.tol module in America Online (AOL) 5.0 may allow remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long URL in a link. • http://marc.info/?l=bugtraq&m=98053366805491&w=2 •
CVSS: 7.5EPSS: 44%CPEs: 1EXPL: 2CVE-2001-0205 – aolserver 3.2 Win32 - Directory Traversal
https://notcve.org/view.php?id=CVE-2001-0205
09 Mar 2001 — Directory traversal vulnerability in AOLserver 3.2 and earlier allows remote attackers to read arbitrary files by inserting "..." into the requested pathname, a modified .. (dot dot) attack. • https://www.exploit-db.com/exploits/20614 •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2001-1416
https://notcve.org/view.php?id=CVE-2001-1416
18 Jan 2001 — Multiple cross-site scripting (XSS) vulnerabilities in the log messages in certain Alpha versions of AOL Instant Messenger (AIM) 4.4 allow remote attackers to execute arbitrary web script or HTML via an image in the (1) DATA, (2) STYLE, or (3) BINARY tags. • http://www.kb.cert.org/vuls/id/541384 •
CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 2CVE-2000-1094 – AOL Instant Messenger 4.0/4.1.2010/4.2.1193 - BuddyIcon Buffer Overflow
https://notcve.org/view.php?id=CVE-2000-1094
09 Jan 2001 — Buffer overflow in AOL Instant Messenger (AIM) before 4.3.2229 allows remote attackers to execute arbitrary commands via a "buddyicon" command with a long "src" argument. • https://www.exploit-db.com/exploits/20511 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 9.8EPSS: 0%CPEs: 12EXPL: 2CVE-2000-1093 – AOL Instant Messenger 3.5.1856/4.0/4.1.2010/4.2.1193 - 'aim://' Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2000-1093
19 Dec 2000 — Buffer overflow in AOL Instant Messenger before 4.3.2229 allows remote attackers to execute arbitrary commands via a long "goim" command. • https://www.exploit-db.com/exploits/20510 •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2000-1000
https://notcve.org/view.php?id=CVE-2000-1000
11 Dec 2000 — Format string vulnerability in AOL Instant Messenger (AIM) 4.1.2010 allows remote attackers to cause a denial of service and possibly execute arbitrary commands by transferring a file whose name includes format characters. • http://www.securityfocus.com/archive/1/137374 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2000-0383
https://notcve.org/view.php?id=CVE-2000-0383
08 May 2000 — The file transfer component of AOL Instant Messenger (AIM) reveals the physical path of the transferred file to the remote recipient. • http://www.securityfocus.com/bid/1180 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2000-0190
https://notcve.org/view.php?id=CVE-2000-0190
02 Mar 2000 — AOL Instant Messenger (AIM) client allows remote attackers to cause a denial of service via a message with a malformed ASCII value. • http://archives.neohapsis.com/archives/bugtraq/2000-03/0016.html •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-1999-0486
https://notcve.org/view.php?id=CVE-1999-0486
01 Feb 1998 — Denial of service in AOL Instant Messenger when a remote attacker sends a malicious hyperlink to the receiving client, potentially causing a system crash. • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0486 •