1. Symantec-Broadcom-Horizontal/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: AOL 9.5 Phobos Import() Buffer Overflow

Web Attack: AOL 9.5 Phobos Import() Buffer Overflow

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to exploit a buffer overflow vulnerability in AOL 9.5 Phobos ActiveX which could result in remote code execution.

Additional Information

AOL 9.5 is used by subscribers of AOL's (America Online) network service.

The application is prone to a remote buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input. Specifically, this issue occurs in the Phobos.dll service component by setting an overly long value to Import() function.

Successful exploits may allow remote attackers to execute arbitrary code in the context of the application. Failed exploit attempts will cause denial-of-service conditions.

Affected

  • AOL 9.5
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube