AOL 9.0 Deskbar.dll/Toolbar.dll DoS Vulnerability
- From: "Justin Seitz" <jms@xxxxxxxxxxxx>
- Date: Thu, 29 Mar 2007 11:52:34 -0600 (CST)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Overview
AOL has recently been made aware of a denial of service condition that
exists in early versions of the AOL 9.0 client software. The affected
DLLs are listed below:
* Deskbar.dll
* Toolbar.dll
AOL does not believe that the issue presents a threat to a user's system
or data. If a user were to access a website that had specially crafted
code intended to exploit the bug, the result would be a crash of the
user's browser.
Affected Products and Applications
* AOL 9.0 (released prior to February 2007)
Solutions
1. Users of an affected client are encouraged to upgrade to the latest
version of the AOL client available from http://www.aol.com/.
Acknowledgments
AOL would like to thank Justin Seitz for his assistance in identifying and
responsibly reporting this issue.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (Darwin)
iD8DBQFGC/jqmtUUpo0iUmgRAh7JAKDbHXXD0DO5OQy95ZlEAzKPZRCxegCdFc5m
1dHjBd8CyeeXXx8IIwXSs1Y=
=23oS
-----END PGP SIGNATURE-----
- Prev by Date: Re: Re: Bypass phishing protection in Firefox / Opera
- Next by Date: [ MDKSA-2007:071 ] - Updated xmms packages to address integer vulnerabilities
- Previous by thread: Windows Live Spaces logged user NetworkSetup.aspx cross site scripting
- Next by thread: [ MDKSA-2007:071 ] - Updated xmms packages to address integer vulnerabilities
- Index(es):
Relevant Pages
|
|
