Vulnerability in Aol Instant_messenger
CVE-2005-1655
AOL Instant Messenger 5.5.x and earlier allows remote attackers to cause a denial of service (client crash) via an invalid smiley icon location in the sml parameter of a font tag.
EPSS: 0.024 (82.0th percentile) — read the EPSS interpretation.
Affected products
- Aol Instant_messenger — versions 1.2, 2.0.912, 2.0.996
- N/a — versions n/a
References
- cve@mitre.org (Exploit, vdb-entry, x_refsource_BID)