CVE-2000-1094

Description

Buffer overflow in AOL Instant Messenger (AIM) before 4.3.2229 allows remote attackers to execute arbitrary commands via a "buddyicon" command with a long "src" argument.

Affected products

• AOL / aim4.3.2229

References

• VENDOR_ADVISORYhttp://www.atstake.com/research/advisories/2000/a121200-1.txt
• MISChttp://www.osvdb.org/1692
• MAILING_LISThttp://marc.info/?l=bugtraq&m=97683774417132&w=2
• MAILING_LISThttp://marc.info/?l=bugtraq&m=97668265628917&w=2