Critical

CVE-2002-0005 - Unspecified vulnerability in AOL Instant Messenger

Publication: 2002-01-31
Summary

Buffer overflow in AOL Instant Messenger (AIM) 4.7.2480, 4.8.2616, and other versions allows remote attackers to execute arbitrary code via a long argument in a game request (AddGame).

Risk level (CVSS 10)

Critical

10.0

Access Vector

  • Network
  • Adjacent Network
  • Local

Access Complexity

  • Low
  • Medium
  • High

Authentication

  • None
  • Single
  • Multiple

Confident. Impact

  • Complete
  • Partial
  • None

Integrity Impact

  • Complete
  • Partial
  • None

Affected Products

  • AOL Instant Messenger 4.3
  • AOL Instant Messenger 4.3.2229
  • AOL Instant Messenger 4.4
  • AOL Instant Messenger 4.5
  • AOL Instant Messenger 4.6
  • AOL Instant Messenger 4.7
  • AOL Instant Messenger 4.7.2480
  • AOL Instant Messenger 4.8.2616