Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 SMTP:MAL:AIM-BO-URL

Severity

 Medium

Recommended

 No

Category

 SMTP

Keywords

 AOL Instant Messenger "GoAway" URL

Release Date

 2004/08/11

Update Number

 1213

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

SMTP: AOL Instant Messenger "GoAway" URL


This signature detects attempts to deliver a "GoAway" URL through SMTP. There is a known buffer overflow vulnerability in the way AOL's Instant Messenger client handles "GoAway" URLs. "GoAway" URLs are not normally seen in an e-mail message. This could be an indication of an exploit attempt. It could also be a false positive.

Extended Description

AOL Instant Messenger is reported prone to a remote buffer overflow vulnerability when processing a malformed 'Away' message. This vulnerability may allow a remote attacker to execute arbitrary code on a vulnerable computer to gain unauthorized access. AOL Instant Messenger versions 5.5.3595 and 5.5 are reported vulnerable to this issue, however, other versions may be affected as well.

Affected Products

  • AOL Instant Messenger 5.5.0
  • AOL Instant Messenger 5.5.3415 Beta
  • AOL Instant Messenger 5.5.3595

References

  • BugTraq: 10889
  • CVE: CVE-2004-0636
  • URL: http://www.idefense.com/application/poi/display?id=121&type=vulnerabilities

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out