AOL : Security Vulnerabilities, CVEs, (Directory traversal)
Directory traversal vulnerability in AOLserver 3.2 and earlier allows remote attackers to read arbitrary files by inserting "..." into the requested pathname, a modified .. (dot dot) attack.
Max CVSS
5.0
EPSS Score
68.64%
Published
2001-05-03
Updated
2016-10-18
Directory traversal vulnerability in AOL Instant Messenger (AIM) 4.8 beta and earlier allows remote attackers to create arbitrary files and execute commands via a Direct Connection with an IMG tag with a SRC attribute that specifies the target filename.
Max CVSS
5.0
EPSS Score
4.58%
Published
2002-06-18
Updated
2008-09-05
Directory traversal vulnerability in AOL Instant Messenger (AIM) 5.9 and earlier, and ICQ 5.1 and probably earlier, allows user-assisted remote attackers to write files to arbitrary locations via a .. (dot dot) in a filename in a file transfer operation.
Max CVSS
4.3
EPSS Score
2.35%
Published
2007-04-10
Updated
2017-07-29
Directory traversal vulnerability in AOL Instant Messenger (AIM) 4.8.2790 allows remote attackers to execute arbitrary programs by specifying the program in the href attribute of a link.
Max CVSS
2.6
EPSS Score
1.29%
Published
2002-12-31
Updated
2008-09-05
4 vulnerabilities found