GCVE - cpe:2.3:a:aol:aol:9.0:*:security:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:aol:aol:9.0:*:security:*:*:*:*:*

part: a version: 9.0 update: *

Vendor	Aol (`10d5b003-67b5-5c5d-ad77-b012d557140a`)
Product	Aol (`b4325e8e-84be-576f-a33c-31e4b0300287`)
Edition	security
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2006-5820`	vulnerable	2026-06-03 14:27:46.766130	Details available The LinkSBIcons method in the SuperBuddy ActiveX control (Sb.SuperBuddy.1) in America Online 9.0 Security Edition dereferences an arbitrary function pointer, which allows remote attackers to execute arbitrary code via a modified pointer value. Published: 2007-04-02T22:00:00.000Z Updated: 2024-08-07T20:04:55.703Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/23224 http://www.kb.cert.org/vuls/id/478225 http://secunia.com/advisories/24714 http://www.vupen.com/english/advisories/2007/1184 http://securityreason.com/securityalert/2513	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2006-5502`	vulnerable	2026-06-03 14:27:46.024078	Details available Heap-based buffer overflow in the AOL.PicDownloadCtrl.1 ActiveX control (YGPPicDownload.dll) 9.2.3.0 in America Online (AOL) 9.0 Security Edition allows remote attackers to execute arbitrary code via the AddPictureNoAlbum method, a different vulnerability than CVE-2006-5501. Published: 2006-10-25T22:00:00.000Z Updated: 2024-08-07T19:55:52.725Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/20747 http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=429 http://www.vupen.com/english/advisories/2006/4197 http://securitytracker.com/id?1017121 http://secunia.com/advisories/22567	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2006-5501`	vulnerable	2026-06-03 14:27:46.023651	Details available Buffer overflow in the AOL.PicDownloadCtrl.1 ActiveX control (YGPPicDownload.dll) 9.2.3.0 in America Online (AOL) 9.0 Security Edition allows remote attackers to execute arbitrary code via the downloadFileDirectory property, a different vulnerability than CVE-2006-5502. Published: 2006-10-25T22:00:00.000Z Updated: 2024-08-07T19:55:52.685Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/20745 http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=430 https://exchange.xforce.ibmcloud.com/vulnerabilities/29797 http://www.vupen.com/english/advisories/2006/4197 http://securitytracker.com/id?1017121	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.