CVE-2011-10027 in AOLinformation

Résumé

par MITRE • 20/08/2025

AOL Desktop 9.6 contains a buffer overflow vulnerability in its Tool\rich.rct component when parsing .rtx files. By embedding an overly long string in a hyperlink tag, an attacker can trigger a stack-based buffer overflow due to the use of unsafe strcpy operations. This allows remote attackers to execute arbitrary code when a victim opens a malicious .rtx file. AOL Desktop is end-of-life and no longer supported. Users are encouraged to migrate to AOL Desktop Gold or alternative platforms.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsable

VulnCheck

Réserver

18/08/2025

Divulgation

20/08/2025

Modérer

accepté

Entrée

VDB-320819

CPE

prêt

CWE

CWE-121 (confirmé)

CVSS

6.3 (VulDB)

EPSS

0.23078

KEV

non

Activités

très faible

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-10027
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-10027
CVE Details	https://www.cvedetails.com/cve/CVE-2011-10027/

◂ Précédent Aperçu Suivant ▸

Do you need the next level of professionalism?

Upgrade your account now!