Vulnerabilities > CVE-2001-1421 - Denial of Service vulnerability in AOL Instant Messenger Font

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

aol

NVD

Published: 2001-10-06

Updated: 2017-07-11

Summary

AOL Instant Messenger (AIM) 4.7 and earlier allows remote attackers to cause a denial of service (application crash) via a large number of different fonts followed by an HTML HR tag.

Vulnerable Configurations

Part	Description	Count
Application	Aol AOL Instant Messenger *	1

References

http://www.kb.cert.org/vuls/id/530299
http://www.kb.cert.org/vuls/id/JARL-569MD7
http://www.securityfocus.com/archive/1/218920
http://www.securityfocus.com/archive/1/247707
http://www.securityfocus.com/bid/3756
https://exchange.xforce.ibmcloud.com/vulnerabilities/7757