Title: AOL Instant Messenger Remote Buffer Overflow
Severity: CRITICAL
Description:
AOL Instant Messenger (AIM) is a real time messaging service.
The vulnerability exists in the way that AIM parses a game request with a TLV (type, length, value) type of 0x2711. This type of game request is prone to a buffer overflow which could allow a remote user to execute arbitrary code with the privileges of the user who is currently logged on. As a result, a remote attacker is able to gain a command prompt as that user.
It is important to note that there is currently no way for an AIM user to block this type of request.
**AOL has made modifications to their AIM servers to prevent this vulnerability from being exploited through their servers. However, the underlying problem still exists in the client software which could still be exploited using something similar to a man in the middle attack or if an attacker can bypass the filters on the AIM servers.
Affected Products:
- AOL Instant Messenger 4.3.0
- AOL Instant Messenger 4.3.2229
- AOL Instant Messenger 4.4.0
- AOL Instant Messenger 4.5.0
- AOL Instant Messenger 4.6.0
- AOL Instant Messenger 4.7.0
- AOL Instant Messenger 4.7.2480
- AOL Instant Messenger 4.8.2616
References:
- AOL: AOL Instant Messenger Home Page
- W00W00 Homepage: W00W00
- Wicon Software: AIM Filter
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
