TUCoPS :: HP Unsorted A :: bu-1696.htm

AOL 9.5 File Parsing Buffer Overflow Vulnerability
: AOL 9.5 File Parsing Buffer Overflow Vulnerability
: AOL 9.5 File Parsing Buffer Overflow Vulnerability


Product:

AOL 9.5

Vulnerability:

File Parsing Heap-based Buffer Overflow

Description:

Hellcode Research has discovered a heap overflow vulnerability in AOL 9.5
Opening a malformed vCard file (.vcf) with AOL 9.5 causes a crash on "waol.exe"
Successful exploitation may allow execution of arbitrary code.

Credits:

Discovered by Celil 'karak0rsan' Unuver and murderkey from Hellcode Research

http://tcc.hellcode.net

Original Advisory:

http://tcc.hellcode.net/advisories/hellcode-adv009.txt

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH