Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2006-5820
HistoryApr 02, 2007 - 10:19 p.m.

CVE-2006-5820

2007-04-0222:19:00
[email protected]
web.nvd.nist.gov
4

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.5

Confidence

Low

EPSS

0.597

Percentile

97.8%

JSON

The LinkSBIcons method in the SuperBuddy ActiveX control (Sb.SuperBuddy.1) in America Online 9.0 Security Edition dereferences an arbitrary function pointer, which allows remote attackers to execute arbitrary code via a modified pointer value.

Affected configurations

Nvd
Node
aolaolMatch9.0security
VendorProductVersionCPE
aolaol9.0cpe:2.3:a:aol:aol:9.0:*:security:*:*:*:*:*

Related

securityvulns 2
cve 1
packetstorm 1
seebug 1
zdt 1
cert 1
exploitpack 1
cvelist 1
exploitdb 1
threatpost 1
securityvulns
securityvulns
America Online SuperBuddy ActiveX memory corruption
2007-03-31 00:00:00
TSRT-07-03: America Online SuperBuddy ActiveX Control Code Execution Vulnerability
2007-03-31 00:00:00
cve
cve
CVE-2006-5820
2007-04-02 22:19:00
packetstorm
packetstorm
aol-activex.txt
2007-04-05 00:00:00
seebug
seebug
AOL SuperBuddy ActiveX Control Remote Code Execution Exploit (meta)
2007-04-07 00:00:00
zdt
zdt
AOL SuperBuddy ActiveX Control Remote Code Execution Exploit (meta)
2007-04-04 00:00:00
cert
cert
AOL SuperBuddy ActiveX fails to properly validate method arguments
2007-04-05 00:00:00
exploitpack
exploitpack
AOL SuperBuddy - ActiveX Control Remote Code Execution (Metasploit)
2007-04-04 00:00:00
cvelist
cvelist
CVE-2006-5820
2007-04-02 22:00:00
exploitdb
exploitdb
AOL SuperBuddy - ActiveX Control Remote Code Execution (Metasploit)
2007-04-04 00:00:00
threatpost
threatpost
PBS Website Compromised, Used to Serve Exploits
2009-09-23 22:41:03

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.5

Confidence

Low

EPSS

0.597

Percentile

97.8%

JSON
Related for NVD:CVE-2006-5820
securityvulns2cve1packetstorm1seebug1zdt1cert1exploitpack1cvelist1exploitdb1threatpost1