7.5

CVE-2006-3888

EPSS 17.8%
Veröffentlicht 10.10.2006 23:07:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle cret@cert.org
Teams Watchlist Login
Unerledigt Login

Buffer overflow in AOL You've Got Pictures (YGP) Pic Downloader YGPPDownload ActiveX control (AOL.PicDownloadCtrl.1, YGPPicDownload.dll), as used in America Online 9.0 Security Edition, allows remote attackers to execute arbitrary code via a long argument to the SetAlbumName method.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 13

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Aol ≫ Ygp Pic Downloader Activex Control

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	17.8%	0.948

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://secunia.com/advisories/22304

http://securitytracker.com/id?1017024

http://www.kb.cert.org/vuls/id/MIMG-6MUUJ8

http://www.securityfocus.com/bid/20425

http://www.vupen.com/english/advisories/2006/3967

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=420

http://www.kb.cert.org/vuls/id/661524

US Government Resource

http://www.securityfocus.com/bid/20472

https://exchange.xforce.ibmcloud.com/vulnerabilities/29410

https://exchange.xforce.ibmcloud.com/vulnerabilities/29494

https://nvd.nist.gov/vuln/detail/CVE-2006-3888

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-3888

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-3888

EUVD