CVE-2006-6442

Stack-based buffer overflow in the SetClientInfo function in the CDDBControlAOL.CDDBAOLControl ActiveX control (cddbcontrol.dll), as used in America Online (AOL) 7.0 4114.563, 8.0 4129.230, and 9.0 Security Edition 4156.910, and possibly other products, allows remote attackers to execute arbitrary code via a long ClientId argument.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:aol:aol_client_software:7.0_4114.563:*:*:*:*:*:*:*
cpe:2.3:a:aol:aol_client_software:8.0_4129.230:*:*:*:*:*:*:*
cpe:2.3:a:aol:aol_client_software:9.0:*:security_4156.910:*:*:*:*:*

History

No history.

Information

Published : 2006-12-10 11:28

Updated : 2024-02-04 17:13


NVD link : CVE-2006-6442

Mitre link : CVE-2006-6442

CVE.ORG link : CVE-2006-6442


JSON object : View

Products Affected

aol

  • aol_client_software
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer