Vulnerabilities > CVE-2002-2169 - Unspecified vulnerability in AOL Instant Messenger 4.5/4.7/4.7.2480

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
network
low complexity
aol
exploit available

Summary

Cross-site scripting vulnerability AOL Instant Messenger (AIM) 4.5 and 4.7 for MacOS and Windows allows remote attackers to conduct unauthorized activities, such as adding buddies and groups to a user's buddy list, via a URL with a META HTTP-EQUIV="refresh" tag to an aim: URL.

Vulnerable Configurations

Part Description Count
Application
Aol
3

Exploit-Db

descriptionAOL Instant Messenger 4.x Unauthorized Actions Vulnerability. CVE-2002-2169. Remote exploit for windows platform
idEDB-ID:21619
last seen2016-02-02
modified2002-07-16
published2002-07-16
reporterorb
sourcehttps://www.exploit-db.com/download/21619/
titleAOL Instant Messenger 4.x Unauthorized Actions Vulnerability