CVE-2002-2169
published 2002-12-31CVE-2002-2169: Cross-site scripting vulnerability AOL Instant Messenger (AIM) 4.5 and 4.7 for MacOS and Windows allows remote attackers to conduct unauthorized activities…
PriorityP416medium5CVSS 2.0
AVNACLAuNCNIPAN
EXPLOIT
EPSS
2.38%
81.8th percentile
Cross-site scripting vulnerability AOL Instant Messenger (AIM) 4.5 and 4.7 for MacOS and Windows allows remote attackers to conduct unauthorized activities, such as adding buddies and groups to a user's buddy list, via a URL with a META HTTP-EQUIV="refresh" tag to an aim: URL.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| aol | instant_messenger | — | — |
| aol | instant_messenger | — | — |
| aol | instant_messenger | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://online.securityfocus.com/archive/1/282443http://www.iss.net/security_center/static/9616.phphttp://www.mindflip.org/aim.htmlhttp://www.securityfocus.com/bid/5246http://online.securityfocus.com/archive/1/282443http://www.iss.net/security_center/static/9616.phphttp://www.mindflip.org/aim.htmlhttp://www.securityfocus.com/bid/5246
2002-12-31
Published