Denial of Service Vulnerability in AOL Instant Messenger 5.9 and Earlier
CVE-2005-1891

7.5HIGH

Key Information:

Vendor

Aol

Status
Instant Messenger
Vendor
CVE Published:
9 June 2005

What is CVE-2005-1891?

A vulnerability in the GIF parser within ateimg32.dll of AOL Instant Messenger versions 5.9.3797 and earlier permits remote attackers to induce a denial of service by sending a specially crafted malformed buddy icon. This can result in the application crashing due to an integer underflow occurring within a loop counter during processing, thereby disrupting user access and functionality.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.securityfocus.com/bid/13880
vdb-entryx_refsource_BID
http://marc.info/?l=bugtraq&m=111816939928640&w=2
mailing-listx_refsource_BUGTRAQ
http://securitytracker.com/id?1014145
vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.