Lucene search

MitreCVE-2006-5820

HistoryApr 02, 2007 - 10:19 p.m.

CVE-2006-5820

2007-04-0222:19:00

mitre

web.nvd.nist.gov

cve-2006-5820

linksbicons method

superbuddy activex control

america online 9.0 security edition

remote code execution

nvd

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.4

Confidence

Low

EPSS

0.597

Percentile

97.8%

JSON

The LinkSBIcons method in the SuperBuddy ActiveX control (Sb.SuperBuddy.1) in America Online 9.0 Security Edition dereferences an arbitrary function pointer, which allows remote attackers to execute arbitrary code via a modified pointer value.

Affected configurations

Nvd

Node

aolaolMatch9.0security

VendorProductVersionCPE
aolaol9.0cpe:2.3:a:aol:aol:9.0:*:security:*:*:*:*:*

Vendor	Product	Version	CPE
aol	aol	9.0	cpe:2.3:a:aol:aol:9.0::security:::::

References

osvdb.org/34318

secunia.com/advisories/24714

securityreason.com/securityalert/2513

www.kb.cert.org/vuls/id/478225

www.securityfocus.com/archive/1/464313/100/0/threaded

www.securityfocus.com/bid/23224

www.tippingpoint.com/security/advisories/TSRT-07-03.html

www.vupen.com/english/advisories/2007/1184

exchange.xforce.ibmcloud.com/vulnerabilities/33347

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.4

Confidence

Low

EPSS

0.597

Percentile

97.8%

JSON

Related for CVE-2006-5820