ronjor
January 17th, 2006, 09:00 AM
{QUOTE-> Description:
A vulnerability has been reported in AOL, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a user's system.
The vulnerability is caused due to a boundary error in the YPG Picture Finder Tool ActiveX Control (YGPPicFinder.DLL). This can be exploited to cause a buffer overflow and may allow arbitrary code execution.
The vulnerability has been reported in AOL 8.0, 8.0 Plus, and 9.0 Classic. The vulnerable control was also distributed via the You've Got Pictures website prior to 2004. <-QUOTE}
Secunia advisory and hotfix (http://secunia.com/advisories/18521/)
A vulnerability has been reported in AOL, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a user's system.
The vulnerability is caused due to a boundary error in the YPG Picture Finder Tool ActiveX Control (YGPPicFinder.DLL). This can be exploited to cause a buffer overflow and may allow arbitrary code execution.
The vulnerability has been reported in AOL 8.0, 8.0 Plus, and 9.0 Classic. The vulnerable control was also distributed via the You've Got Pictures website prior to 2004. <-QUOTE}
Secunia advisory and hotfix (http://secunia.com/advisories/18521/)