CVSS: 7.2EPSS: 0%CPEs: 5EXPL: 0CVE-2006-0526
https://notcve.org/view.php?id=CVE-2006-0526
The default configuration of the America Online (AOL) client software allows all users to modify a certain registry value that specifies a DLL file name, which might allow local users to gain privileges via a Trojan horse program. • http://www.cs.princeton.edu/~sudhakar/papers/winval.pdf http://www.kb.cert.org/vuls/id/953860 http://www.securityfocus.com/archive/1/423587/100/0/threaded http://www.securityfocus.com/bid/16453 https://exchange.xforce.ibmcloud.com/vulnerabilities/24498 •
CVSS: 10.0EPSS: 33%CPEs: 3EXPL: 0CVE-2006-0316
https://notcve.org/view.php?id=CVE-2006-0316
Buffer overflow in YGPPicFinder.DLL in AOL You've Got Pictures (YGP) Picture Finder Tool ActiveX Control, as used in AOL 8.0, 8.0 Plus, and 9.0 Classic, allows remote attackers to execute arbitrary code via unspecified vectors. • http://news.com.com/2061-10789_3-6027865.html?part=rss&tag=6027865&subj=news http://secunia.com/advisories/18521 http://securitytracker.com/id?1015494 http://www.kb.cert.org/vuls/id/715730 http://www.kb.cert.org/vuls/id/MIMG-6KRSQP http://www.osvdb.org/22486 http://www.securityfocus.com/bid/16262 http://www.vupen.com/english/advisories/2006/0221 https://exchange.xforce.ibmcloud.com/vulnerabilities/24160 •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0CVE-2005-2597
https://notcve.org/view.php?id=CVE-2005-2597
AOL Client Software 9.0 uses insecure permissions for its installation path, which allows local users to execute arbitrary code with SYSTEM privileges by replacing ACSD.exe with a malicious program. • http://archives.neohapsis.com/archives/ntbugtraq/2005-08/0009.html http://www.securityfocus.com/bid/14530 https://exchange.xforce.ibmcloud.com/vulnerabilities/24324 •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2005-1891
https://notcve.org/view.php?id=CVE-2005-1891
The GIF parser in ateimg32.dll in AOL Instant Messenger (AIM) 5.9.3797 and earlier allows remote attackers to cause a denial of service (crash) via a malformed buddy icon that causes an integer underflow in a loop counter variable. • http://marc.info/?l=bugtraq&m=111816939928640&w=2 http://marc.info/?l=bugtraq&m=111817881214343&w=2 http://securitytracker.com/id?1014145 http://www.securityfocus.com/bid/13880 • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVSS: 5.0EPSS: 1%CPEs: 36EXPL: 2CVE-2005-1655 – AOL Instant Messenger 4.x/5.x - Smiley Icon Location Remote Denial of Service
https://notcve.org/view.php?id=CVE-2005-1655
AOL Instant Messenger 5.5.x and earlier allows remote attackers to cause a denial of service (client crash) via an invalid smiley icon location in the sml parameter of a font tag. • https://www.exploit-db.com/exploits/25633 http://www.securityfocus.com/bid/13553 •