CVE-2006-5501 - Gravel blind Skumbag

Description

Buffer overflow in the AOL.PicDownloadCtrl.1 ActiveX control (YGPPicDownload.dll) 9.2.3.0 in America Online (AOL) 9.0 Security Edition allows remote attackers to execute arbitrary code via the downloadFileDirectory property a different vulnerability than CVE-2006-5502.

Reference

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=430 http://www.securityfocus.com/bid/20745 http://securitytracker.com/id?1017121 http://secunia.com/advisories/22567 http://www.vupen.com/english/advisories/2006/4197 https://exchange.xforce.ibmcloud.com/vulnerabilities/29797