|
Vulnerability Assessment & Network Security Forums |
|||||||||
If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery. Home >> Browse Vulnerability Assessment Database >> Windows >> AOL You've Got Pictures ActiveX Control Overflow Vulnerability Vulnerability Assessment Details
|
AOL You've Got Pictures ActiveX Control Overflow Vulnerability |
||
Checks for overflow vulnerability in AOL You've Got Pictures ActiveX control Detailed Explanation for this Vulnerability Assessment Summary : The remote Windows host has an ActiveX control that is affected by a buffer overflow vulnerability. Description : The remote host contains an ActiveX control from AOL called YPG Picture Finder Tool. It was distributed along with various versions of AOL's client software and from the You've Got Pictures web site prior to 2004. The 'YGPPicFinder.DLL' component of this control fails to limit the amount of user-supplied data copied to a finite buffer. This can be exploited using, say, a specially-crafted web page to overflow the buffer, crash the application using the control (typically Internet Explorer), and possibly execute arbitrary code subject to the user's rights. See also : http://www.kb.cert.org/vuls/id/715730 http://download.newaol.com/security/YGPClean.exe Solution : Download and run AOL's removal tool. Network Security Threat Level: High / CVSS Base Score : 7.0 (AV:R/AC:L/Au:NR/C:P/I:P/A:P/B:N) Networks Security ID: 16262 Vulnerability Assessment Copyright: This script is Copyright (C) 2006 Tenable Network Security |
||
Cables, Connectors |
HPE BL460c G9 ProLiant Blade | 2x Xeon E5-2620V3 | NO RAM | P244BR | 2xHDD Tray
$179.00
HPE BL460c G10 ProLiant Blade | 2x Silver 4110 | 16GB | P204I | 2x300GB 10KRPM
$1419.00
HPE BL460c G9 ProLiant Blade | 2x Xeon E5-2630V3 | 32GB | P244BR | 2x300GB 15K
$299.00
HPE BL460c G10 ProLiant Blade | 2x Silver 4110 | 32GB | P204I | 2x900GB 10KRPM
$1499.00
DELL PEM640 POWEREDGE M640 BLADE SERVER
$539.95
HP ProLiant BL460c G9 (Gen9) 2x E5-2670V3 12 Core 3.1GHz No Ram or No Drives
$59.98
Cisco UCS B200 M4 Blade Server 2X E5-2697A V4 18C 36T 2.60GHZ 768GB RAM No HDD
$1000.00
Dell PowerEdge M620 0F9HJC Blade Server 2*E5-2670 2.60GHz 192GB RAM 2*300GB SAS
$103.99
Dell PowerEdge M620 Blade Server
$39.99
DELL PowerEdge M630 Blade 2x E5-2687Wv3 3.1GHz =20 Cores 32GB H330 2x10Gb X520
$200.00
|
||
No Discussions have been posted on this vulnerability. |