Vulnerabilities > CVE-2006-3888 - Unspecified vulnerability in AOL YGP PIC Downloader Activex Control
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Buffer overflow in AOL You've Got Pictures (YGP) Pic Downloader YGPPDownload ActiveX control (AOL.PicDownloadCtrl.1, YGPPicDownload.dll), as used in America Online 9.0 Security Edition, allows remote attackers to execute arbitrary code via a long argument to the SetAlbumName method.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://www.kb.cert.org/vuls/id/MIMG-6MUUJ8
- http://www.kb.cert.org/vuls/id/661524
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=420
- http://www.securityfocus.com/bid/20425
- http://securitytracker.com/id?1017024
- http://secunia.com/advisories/22304
- http://www.securityfocus.com/bid/20472
- http://www.vupen.com/english/advisories/2006/3967
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29494
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29410