5
CVE-2002-2169
- EPSS 2.38%
- Veröffentlicht 31.12.2002 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:00:46
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Cross-site scripting vulnerability AOL Instant Messenger (AIM) 4.5 and 4.7 for MacOS and Windows allows remote attackers to conduct unauthorized activities, such as adding buddies and groups to a user's buddy list, via a URL with a META HTTP-EQUIV="refresh" tag to an aim: URL.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Aol ≫ Instant Messenger Version4.5
Aol ≫ Instant Messenger Version4.7
Aol ≫ Instant Messenger Version4.7.2480
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.38% | 0.817 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:P/A:N
|
http://online.securityfocus.com/archive/1/282443
http://www.iss.net/security_center/static/9616.php
http://www.mindflip.org/aim.html
http://www.securityfocus.com/bid/5246