Описание
The GIF parser in ateimg32.dll in AOL Instant Messenger (AIM) 5.9.3797 and earlier allows remote attackers to cause a denial of service (crash) via a malformed buddy icon that causes an integer underflow in a loop counter variable.
Ссылки
- Mailing List
- Mailing List
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkThird Party AdvisoryVDB Entry
- Mailing List
- Mailing List
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkThird Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия до 5.9.3797 (включая)
Одновременно
cpe:2.3:a:aol:aim:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
EPSS
Процентиль: 80%
0.01414
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-191
Связанные уязвимости
CVSS3: 7.5
github
почти 4 года назад
The GIF parser in ateimg32.dll in AOL Instant Messenger (AIM) 5.9.3797 and earlier allows remote attackers to cause a denial of service (crash) via a malformed buddy icon that causes an integer underflow in a loop counter variable.
EPSS
Процентиль: 80%
0.01414
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-191