This Metasploit module exploits a flaw in the handling of AOL Instant Messenger's 'goaway' URI handler. An attacker can execute arbitrary code by supplying a overly sized buffer as the 'message' parameter. This issue is known to affect AOL Instant Messenger 5.5.
3f9f669a44333e450e5fc4a71660d89955d2e85848f584c1c6d9d52d001ed850
Local proof of concept exploit for AIM 5.5.3595 that makes use of the Away Message vulnerability. Binds a shell to port 1180.
1e6d4bb64f8f6ded58619d8f030cb808e1322f3259b38f11c15015cfad30f9ba