VULHUB ™

A vulnerability has been discovered in AOL Instant Messenger (AIM), which could allow an attacker to force a user to download an attacker-supplied file. If a vulnerable user has an option enabled which allows users to download files without a prompt, it may be possible to force the user to download a file. The file will be transfered without prompting the target user for authorization. Exploiting this issue may allow an attacker to fill a victims hard drive with a file of excessive length.

A vulnerability has been discovered in AOL Instant Messenger (AIM), which could allow an attacker to force a user to download an attacker-supplied file. If a vulnerable user has an option enabled which allows users to download files without a prompt, it may be possible to force the user to download a file. The file will be transfered without prompting the target user for authorization. Exploiting this issue may allow an attacker to fill a victims hard drive with a file of excessive length.