Insecure Permissions in AOL Client Software 9.0 Allow Local Code Execution
CVE-2005-2597

Currently unrated

Key Information:

Vendor

Aol

Status
Aol Client Software
Vendor
CVE Published:
17 August 2005

What is CVE-2005-2597?

The AOL Client Software 9.0 has a significant security flaw due to improper handling of installation path permissions. This vulnerability allows local users to replace the executable file ACSD.exe with a malicious program, thereby gaining SYSTEM privileges. This can lead to unauthorized access and execution of arbitrary code on the affected system, posing serious security risks for users relying on this software.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/24324
vdb-entryx_refsource_XF
http://archives.neohapsis.com/archives/ntbugtraq/2005-08/...
mailing-listx_refsource_NTBUGTRAQ
http://www.securityfocus.com/bid/14530
vdb-entryx_refsource_BID

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.