7.5

CVE-2006-3888

EPSS 17.8%
Published 10.10.2006 23:07:00
Last modified 09.04.2025 00:30:58
Source cret@cert.org
Teams watchlist Login
Open Login

Buffer overflow in AOL You've Got Pictures (YGP) Pic Downloader YGPPDownload ActiveX control (AOL.PicDownloadCtrl.1, YGPPicDownload.dll), as used in America Online 9.0 Security Edition, allows remote attackers to execute arbitrary code via a long argument to the SetAlbumName method.

Affected products Warnungen 0 Metrics 2 CWE 0 References 13

Data is provided by the National Vulnerability Database (NVD)

Aol ≫ Ygp Pic Downloader Activex Control

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	17.8%	0.948

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://secunia.com/advisories/22304

http://securitytracker.com/id?1017024

http://www.kb.cert.org/vuls/id/MIMG-6MUUJ8

http://www.securityfocus.com/bid/20425

http://www.vupen.com/english/advisories/2006/3967

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=420

http://www.kb.cert.org/vuls/id/661524

US Government Resource

http://www.securityfocus.com/bid/20472

https://exchange.xforce.ibmcloud.com/vulnerabilities/29410

https://exchange.xforce.ibmcloud.com/vulnerabilities/29494

https://nvd.nist.gov/vuln/detail/CVE-2006-3888

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-3888

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-3888

EUVD