7.5
CVE-2006-3888
- EPSS 5.86%
- Veröffentlicht 10.10.2006 23:07:00
- Zuletzt bearbeitet 16.06.2026 22:28:01
- Quelle cret@cert.org
- CVE-Watchlists
- Unerledigt
Buffer overflow in AOL You've Got Pictures (YGP) Pic Downloader YGPPDownload ActiveX control (AOL.PicDownloadCtrl.1, YGPPicDownload.dll), as used in America Online 9.0 Security Edition, allows remote attackers to execute arbitrary code via a long argument to the SetAlbumName method.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 5.86% | 0.923 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://secunia.com/advisories/22304
http://securitytracker.com/id?1017024
http://www.kb.cert.org/vuls/id/MIMG-6MUUJ8
http://www.securityfocus.com/bid/20425
http://www.vupen.com/english/advisories/2006/3967
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=420
http://www.kb.cert.org/vuls/id/661524
http://www.securityfocus.com/bid/20472
https://exchange.xforce.ibmcloud.com/vulnerabilities/29410
https://exchange.xforce.ibmcloud.com/vulnerabilities/29494