|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[Hellcode Research]: AOL 9.5 File Parsing Buffer Overflow Vulnerability
karakorsankara
hotmail.com
Date: Wed Feb 03 2010 - 09:04:39 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Product:
AOL 9.5
Vulnerability:
File Parsing Heap-based Buffer Overflow
Description:
Hellcode Research has discovered a heap overflow vulnerability in AOL 9.5
Opening a malformed vCard file (.vcf) with AOL 9.5 causes a crash on "waol.exe"
Successful exploitation may allow execution of arbitrary code.
Credits:
Discovered by Celil 'karak0rsan' Unuver and murderkey from Hellcode Research
http://tcc.hellcode.net
Original Advisory:
http://tcc.hellcode.net/advisories/hellcode-adv009.txt
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]