Known Vulnerabilities for products from Aol
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Aol".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2014-5570 | The DailyFinance - Stocks & News (aka com.aol.mobile.dailyFinance) application 2.0.2.1 for Android does not verify X.509 cert... | 5.4 - MEDIUM | 2014-09-09 | 2014-09-09 |
| CVE-2012-5816 | AOL Instant Messenger (AIM) 1.0.1.2 does not verify that the server hostname matches a domain name in the subject's Common Na... | 5.8 - MEDIUM | 2012-11-04 | 2017-08-29 |
| CVE-2010-1374 | Directory traversal vulnerability in iChat in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, when AIM is used, allows remote ... | 4.3 - MEDIUM | 2010-06-17 | 2010-06-17 |
| CVE-2009-4494 | AOLserver 4.5.1 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to ... | 5 - MEDIUM | 2010-01-13 | 2018-10-10 |
| CVE-2009-3658 | Use-after-free vulnerability in the Sb.SuperBuddy.1 ActiveX control (sb.dll) in America Online (AOL) 9.5.0.1 allows remote at... | 8.8 - HIGH | 2009-10-09 | 2024-02-03 |
| CVE-2009-2404 | Heap-based buffer overflow in a regular-expression parser in Mozilla Network Security Services (NSS) before 3.12.3, as used i... | 9.3 - HIGH | 2009-08-03 | 2018-10-03 |
| CVE-2007-6699 | Multiple buffer overflows in the AIM PicEditor 9.5.1.8 ActiveX control in YGPPicEdit.dll in AOL You've Got Pictures (YGP) Pic... | 4.3 - MEDIUM | 2008-02-04 | 2008-11-15 |
| CVE-2007-6250 | Stack-based buffer overflow in AOL AOLMediaPlaybackControl (AOLMediaPlaybackControl.exe), as used by AmpX ActiveX control (Am... | 9.3 - HIGH | 2008-01-09 | 2017-08-08 |
| CVE-2007-5755 | Multiple stack-based buffer overflows in the AOL AmpX ActiveX control in AmpX.dll 2.6.1.11 in AOL Radio allow remote attacker... | 9.3 - HIGH | 2007-11-14 | 2017-07-29 |
| CVE-2007-5124 | The embedded Internet Explorer server control in AOL Instant Messenger (AIM) 6.5.3.12 and earlier allows remote attackers to ... | 6.8 - MEDIUM | 2007-09-27 | 2018-10-15 |
| CVE-2007-4901 | The embedded Internet Explorer server control in AOL Instant Messenger (AIM) 6.1.41.2 and 6.2.32.1, AIM Pro, and AIM Lite doe... | 5.8 - MEDIUM | 2007-09-14 | 2018-10-15 |
| CVE-2007-3437 | AOL Instant Messenger (AIM) 6.1.32.1 on Windows XP allows remote attackers to cause a denial of service (application crash) v... | 7.8 - HIGH | 2007-06-27 | 2023-11-07 |
| CVE-2007-3350 | AOL Instant Messenger (AIM) 6.1.32.1 on Windows XP allows remote attackers to cause a denial of service (application hang) vi... | 7.8 - HIGH | 2007-06-22 | 2023-11-07 |
| CVE-2007-1904 | Directory traversal vulnerability in AOL Instant Messenger (AIM) 5.9 and earlier, and ICQ 5.1 and probably earlier, allows us... | 4.3 - MEDIUM | 2007-04-10 | 2017-07-29 |
| CVE-2007-1767 | Unspecified vulnerability in (1) Deskbar.dll and (2) Toolbar.dll in AOL 9.0 before February 2007 allows remote attackers to c... | 7.8 - HIGH | 2007-03-30 | 2017-07-29 |
| CVE-2006-6442 | Stack-based buffer overflow in the SetClientInfo function in the CDDBControlAOL.CDDBAOLControl ActiveX control (cddbcontrol.d... | 9.3 - HIGH | 2006-12-10 | 2018-10-17 |
| CVE-2006-5820 | The LinkSBIcons method in the SuperBuddy ActiveX control (Sb.SuperBuddy.1) in America Online 9.0 Security Edition dereference... | 9.3 - HIGH | 2007-04-02 | 2018-10-17 |
| CVE-2006-5650 | The ICQPhone.SipxPhoneManager ActiveX control in America Online ICQ 5.1 allows remote attackers to download and execute arbit... | 7.5 - HIGH | 2006-11-07 | 2018-10-17 |
| CVE-2006-5502 | Heap-based buffer overflow in the AOL.PicDownloadCtrl.1 ActiveX control (YGPPicDownload.dll) 9.2.3.0 in America Online (AOL) ... | 7.5 - HIGH | 2006-10-25 | 2017-07-20 |
| CVE-2006-5501 | Buffer overflow in the AOL.PicDownloadCtrl.1 ActiveX control (YGPPicDownload.dll) 9.2.3.0 in America Online (AOL) 9.0 Securit... | 7.5 - HIGH | 2006-10-25 | 2017-07-20 |
Known software with vulnerabilities from Aol
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Aol | Aim | 1.0 |
| Application | Aol | Aim Toolbar | - |
| Application | Aol | Aol Toolbar | - |
| Application | Aol | Aolserver | 3.3.1 |
| Application | Aol | Browser | 1.1 |
| Application | Aol | Dailyfinance - Stocks Amp News | 2.0.2.1 |
| Application | Aol | Email Toolbar | - |
| Application | Aol | Explorer | - |
| Application | Aol | Internet Software | 4.0 |
| Application | Aol | Toolbar | 5.74.1.1 |