漏洞信息详情
AOL Instant Messenger HTML注释拒绝服务漏洞
- CNNVD编号:CNNVD-200110-007
- 危害等级: 低危
- CVE编号: CVE-2001-1419
- 漏洞类型: 其他
- 发布时间: 2001-10-02
- 威胁类型: 远程
- 更新时间: 2006-04-07
- 厂 商: aol
- 漏洞来源: .');">Posted to the Vuln...
漏洞简介
AOL Instant Messenger (AIM) 4.7.2480及其之前的版本存在漏洞。远程攻击者可以借助包含大量“<!--”HTML注释的即时消息导致服务拒绝(应用程序崩溃)。
漏洞公告
Currently the SecurityFocus staff are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
参考网址
来源:US-CERT Vulnerability Note: VU#JARL-56TPTN 名称: http://www.kb.cert.org/vuls/id/JARL-56TPTN 链接:http://www.kb.cert.org/vuls/id/JARL-56TPTN 来源:US-CERT Vulnerability Note: VU#507771 名称: VU#507771 链接:http://www.kb.cert.org/vuls/id/507771 来源: XF 名称: aim-HTML-comments-dos(7233) 链接:http://xforce.iss.net/xforce/xfdb/7233 来源: BID 名称: 3398 链接:http://www.securityfocus.com/bid/3398 来源: BUGTRAQ 名称: 20011230 Windows AIM Client Exploits 链接:http://www.securityfocus.com/archive/1/247707 来源: BUGTRAQ 名称: 20011002 AIM 0day DoS 链接:http://archives.neohapsis.com/archives/bugtraq/2001-10/0014.HTML
受影响实体
- Aol Instant_messenger:4.7.2480
- Aol Instant_messenger:4.3.2229
- Aol Instant_messenger:4.0
- Aol Instant_messenger:4.1
- Aol Instant_messenger:4.2
补丁
暂无
评论