Vulnerability Description
Format string vulnerability in AOL Instant Messenger (AIM) 4.1.2010 allows remote attackers to cause a denial of service and possibly execute arbitrary commands by transferring a file whose name includes format characters.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Aol | Instant Messenger | 4.1.2010 |
References
- http://www.securityfocus.com/archive/1/137374Vendor Advisory
- http://www.securityfocus.com/bid/1747Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5314
- http://www.securityfocus.com/archive/1/137374Vendor Advisory
- http://www.securityfocus.com/bid/1747Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5314
FAQ
What is CVE-2000-1000?
CVE-2000-1000 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Format string vulnerability in AOL Instant Messenger (AIM) 4.1.2010 allows remote attackers to cause a denial of service and possibly execute arbitrary commands by transferring a file whose name inclu...
How severe is CVE-2000-1000?
CVE-2000-1000 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2000-1000?
Check the references section above for vendor advisories and patch information. Affected products include: Aol Instant Messenger.