Release DateJul 11, 2011 |
Severityhigh |
ImpactSystem Compromise: Remote attackers can gain control of vulnerable systems. |
DescriptionThis indicates an attack attempt against a buffer overflow vulnerability in AOL Desktop.The vulnerability is caused by a boundary error in the "rich.rct" DLL library when processing Rich Text files (".rtx"). It can be exploited to cause a heap based buffer overflow via an overly long string in the "HREF" attribute of the "A" HTML tag. |
Affected ProductsAOL Desktop 9.6 |
Recommended ActionsCurrently we are not aware of any vendor supplied patch for this issue. |
Coverage IPS
VCM |
Reference/shttp://secunia.com/advisories/43136/http://www.securityfocus.com/bid/46129 (BugTraq) http://www.exploit-db.com/exploits/16107/ |
