America Online SuperBuddy ActiveX memory corruption
Published:		31.03.2007
Source:		BUGTRAQ
SecurityVulns ID:		7512
Type:		remote
Level:		5/10
Description:		One of methods allows execute some actions under controllable address.

Affected:		AOL : AOL 9.0
CVE:		CVE-2006-5820 (The LinkSBIcons method in the SuperBuddy ActiveX control (Sb.SuperBuddy.1) in America Online 9.0 Security Edition dereferences an arbitrary function pointer, which allows remote attackers to execute arbitrary code via a modified pointer value.)

Original document

3COM, TSRT-07-03: America Online SuperBuddy ActiveX Control Code Execution Vulnerability (31.03.2007)

Files:		Exploits AOL Sb.Superbuddy vulnerability (metasploit)
Discuss:		Read or add your comments to this news (0 comments)