Vulnerabilities > CVE-2004-2373 - Unspecified vulnerability in AOL Instant Messenger
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
The Buddy icon file for AOL Instant Messenger (AIM) 4.3 through 5.5 is created in a predictable location, which may allow remote attackers to use a shell: URI to exploit other vulnerabilities that involve predictable locations.
Vulnerable Configurations
Exploit-Db
description | AOL Instant Messenger 4.x/5.x Buddy Icon Predictable File Location Weakness. CVE-2004-2373. Remote exploit for windows platform |
id | EDB-ID:23730 |
last seen | 2016-02-02 |
modified | 2004-02-19 |
published | 2004-02-19 |
reporter | Michael Evanchik |
source | https://www.exploit-db.com/download/23730/ |
title | AOL Instant Messenger 4.x/5.x Buddy Icon Predictable File Location Weakness |