5

CVE-2002-0591

Exploit
Directory traversal vulnerability in AOL Instant Messenger (AIM) 4.8 beta and earlier allows remote attackers to create arbitrary files and execute commands via a Direct Connection with an IMG tag with a SRC attribute that specifies the target filename.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AolInstant Messenger Version4.0
AolInstant Messenger Version4.1
AolInstant Messenger Version4.2
AolInstant Messenger Version4.3
AolInstant Messenger Version4.4
AolInstant Messenger Version4.5
AolInstant Messenger Version4.6
AolInstant Messenger Version4.7
AolInstant Messenger Version4.8_beta
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 11.63% 0.955
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:P/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://archives.neohapsis.com/archives/bugtraq/2002-04/0203.html
Patch
Vendor Advisory
Exploit
http://www.iss.net/security_center/static/8870.php
Patch
Vendor Advisory
http://www.securityfocus.com/bid/4526
Vendor Advisory
Exploit