Vulnerabilities > CVE-2001-1417 - Denial of Service vulnerability in AOL Instant Messenger 4.7

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

aol

NVD

Published: 2001-10-06

Updated: 2017-07-11

Summary

AOL Instant Messenger (AIM) 4.7 allows remote attackers to cause a denial of service (application hang or crash) via a buddy icon GIF file whose length and width values are larger than the actual image data.

Vulnerable Configurations

Part	Description	Count
Application	Aol AOL Instant Messenger 4.7	1

References

http://www.kb.cert.org/vuls/id/710347
http://www.kb.cert.org/vuls/id/JARL-56TQEN
http://www.securityfocus.com/archive/1/218920
http://www.securityfocus.com/archive/1/247707
http://www.securityfocus.com/bid/3408
https://exchange.xforce.ibmcloud.com/vulnerabilities/7255