7.5

CVE-2006-5501

EPSS 5.42%
Published 25.10.2006 22:07:00
Last modified 09.04.2025 00:30:58
Source cve@mitre.org
Teams watchlist Login
Open Login

Buffer overflow in the AOL.PicDownloadCtrl.1 ActiveX control (YGPPicDownload.dll) 9.2.3.0 in America Online (AOL) 9.0 Security Edition allows remote attackers to execute arbitrary code via the downloadFileDirectory property, a different vulnerability than CVE-2006-5502.

Affected products Warnungen 0 Metrics 2 CWE 0 References 9

Data is provided by the National Vulnerability Database (NVD)

Aol ≫ Aol Version9.0 Editionsecurity

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	5.42%	0.898

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=430

Patch

Vendor Advisory

http://secunia.com/advisories/22567

http://securitytracker.com/id?1017121

http://www.securityfocus.com/bid/20745

http://www.vupen.com/english/advisories/2006/4197

https://exchange.xforce.ibmcloud.com/vulnerabilities/29797

https://nvd.nist.gov/vuln/detail/CVE-2006-5501

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-5501

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-5501

EUVD