| VID |
22014 |
| Severity |
40 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
WWW |
| Detailed Description |
The AOL web server allows remote users to overflow an internal buffer used by the program causing it to execute arbitrary code. AOL web server (AOLserver) is a multithreaded, Tcl-enabled web server used for large scale, dynamic web sites.
Vulnerable systems:
AOLserver version 3.3 and prior
* References:
http://www.securiteam.com/exploits/5LP0M2A55K.html
http://www.aolserver.com/download/ |
| Recommendation |
Upgrade to the latest version of AOLserver (3.3.1 or later) from http://www.aolserver.com/download/ |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
