Total vulnerabilities in the database
Directory traversal vulnerability in AOL Instant Messenger (AIM) 4.8 beta and earlier allows remote attackers to create arbitrary files and execute commands via a Direct Connection with an IMG tag with a SRC attribute that specifies the target filename.
| Software | From | Fixed in |
|---|---|---|
| aol / instant_messenger | 4.2 | 4.2.x |
| aol / instant_messenger | 4.0 | 4.0.x |
| aol / instant_messenger | 4.5 | 4.5.x |
| aol / instant_messenger | 4.3 | 4.3.x |
| aol / instant_messenger | 4.8_beta | 4.8_beta.x |
| aol / instant_messenger | 4.6 | 4.6.x |
| aol / instant_messenger | 4.7 | 4.7.x |
| aol / instant_messenger | 4.4 | 4.4.x |
| aol / instant_messenger | 4.1 | 4.1.x |