This sounds like a serious vulnerability. The SecurityFix is reporting on a very serious vulnerability in AOL.
The problem affects AOL version 8.0, AOL version 8.0+, and AOL version 9.0 Classic.
The vulnerability could allow a remote attacker to take control of a users PC. Basically, all that would be needed is for the AOL user to visit a specially crafted web page.
All AOL users should upgrade to either AOL 9.0 Optimized, or AOL Security Edition AOL downloads center here.
This is of concern for a number of reasons. First, studies show that AOL has a greater proportion of “new internet users” among their membership. Those “new internet users” may not be comfortable with downloading and installing software updates. Additionally, my concern is that the dialup users will not find it practical to download the update.
Broadband users that also use AOL will find it easier to download and install the update and frankly I think will face a slightly greater risk. (If only from a greater tendency to spend longer amounts of time online and stumbling across malicious sites…)
It’s time for them to start sending out cds again I think….
Related PostsRelated Posts
- Dapper Drake update It looks as though Ubuntu has released the first maintenance release in the Dapper Drake life cycle. So, now 6.06.1 can be downloaded. (In analagous terms this might be considered the first service pack). Many updates have been incorporated into the bootable install cds which should cut the amount of......
- So who is behind Windows Police Pro Virus / Rogue Security Software? As I've seen the continuing FLOOD of searches for some way to Remove Windows Police Pro, I've been starting to wonder at the who is behind this particular piece of junk software. These programs aren't written by your average ordinary virus writer, there is really too much spit and polish......
- Vista UAP (User Account Protection) - too much? First let me tell you I have not seen first hand Microsoft's Vista UAP (User Account Protection) I cannot then claim firsthand experience with it, the following is and will be based on what I have read plus how it relates and compares to linux and "run as" functionality. George......
- Review of Sprout Builder When Sprout Builder was first released in beta, this drag and drop Flash authoring widget building environment was immediately on fire. Although there was not much wrong with the original Sprout Builder, they have recently released a much more sophisticated version of their flash building services today. The new Software......
- Beware of Free Registry Cleaner-Scam Might Lurk Beneath It Hold on a second when you want to click that download button on what they claim as free registry cleaner and repairer. Internet scam might lurk beneath it. Before we move further, I should make things clear first. Honestly, what are you expecting from a free registry cleaner and repairer?A......
- Review of: Brute Force RSS (An RSS Blasting Service) Brute Force SEO has long been a popular solution for businesses and individuals looking to create a more efficient web presence online. Taking things one step further, Brute force RSS, an RSS blasting service, is creating this same type of improved web presence, but this time focusing on corporate blogs......
- Network Security guide for the home or small business network – Part 18 – What about Dialup Users?
- Broadband users watch less tv
- The end for Windows 98 may be a boost to linux?
- Dapper Drake update
- RSS feed to spread the word of software updates