VYPR

9.0 Security Edition

by AOL

CVEs (3)

  • CVE-2006-5502Oct 25, 2006
    risk 0.00cvss epss 0.03

    Heap-based buffer overflow in the AOL.PicDownloadCtrl.1 ActiveX control (YGPPicDownload.dll) 9.2.3.0 in America Online (AOL) 9.0 Security Edition allows remote attackers to execute arbitrary code via the AddPictureNoAlbum method, a different vulnerability than CVE-2006-5501.

  • CVE-2006-5501Oct 25, 2006
    risk 0.00cvss epss 0.03

    Buffer overflow in the AOL.PicDownloadCtrl.1 ActiveX control (YGPPicDownload.dll) 9.2.3.0 in America Online (AOL) 9.0 Security Edition allows remote attackers to execute arbitrary code via the downloadFileDirectory property, a different vulnerability than CVE-2006-5502.

  • CVE-2006-0948Aug 21, 2006
    risk 0.00cvss epss 0.00

    AOL 9.0 Security Edition revision 4184.2340, and probably other versions, uses insecure permissions (Everyone/Full Control) for the "America Online 9.0" directory, which allows local users to gain privileges by replacing critical files.