Vulnerabilities > CVE-2006-5820 - Unspecified vulnerability in AOL 9.0

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

aol

exploit available

NVD

Published: 2007-04-02

Updated: 2018-10-17

Summary

The LinkSBIcons method in the SuperBuddy ActiveX control (Sb.SuperBuddy.1) in America Online 9.0 Security Edition dereferences an arbitrary function pointer, which allows remote attackers to execute arbitrary code via a modified pointer value.

Vulnerable Configurations

Part	Description	Count
Application	Aol AOL AOL 9.0	1

Exploit-Db

description	AOL SuperBuddy ActiveX Control Remote Code Execution Exploit (meta). CVE-2006-5820. Remote exploit for windows platform
id	EDB-ID:3662
last seen	2016-01-31
modified	2007-04-04
published	2007-04-04
reporter	Krad Chad
source	https://www.exploit-db.com/download/3662/
title	AOL SuperBuddy ActiveX Control Remote Code Execution Exploit meta

Packetstorm

data source	https://packetstormsecurity.com/files/download/55663/aol-activex.txt
id	PACKETSTORM:55663
last seen	2016-12-05
published	2007-04-05
reporter	Krad Chad
source	https://packetstormsecurity.com/files/55663/aol-activex.txt.html
title	aol-activex.txt

Seebug

bulletinFamily	exploit
description	No description provided by source.
id	SSV:6595
last seen	2017-11-19
modified	2007-04-07
published	2007-04-07
reporter	Root
source	https://www.seebug.org/vuldb/ssvid-6595
title	AOL SuperBuddy ActiveX Control Remote Code Execution Exploit (meta)

Summary

Vulnerable Configurations

Exploit-Db

Packetstorm

Seebug

References