CVE-2000-1094

Severity CVSS v4.0:
Pending analysis
Type:
CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
Publication date:
09/01/2001
Last modified:
03/04/2025

Description

Buffer overflow in AOL Instant Messenger (AIM) before 4.3.2229 allows remote attackers to execute arbitrary commands via a "buddyicon" command with a long "src" argument.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:aol:aim:*:*:*:*:*:*:*:* 4.3.2229 (excluding)