CVE-2002-0032

Yahoo! Messenger 5,0,0,1064 and earlier allows remote attackers to execute arbitrary script as other users via the addview parameter of a ymsgr URI.
References
Link Resource
http://online.securityfocus.com/archive/1/274223 Vendor Advisory
http://www.cert.org/advisories/CA-2002-16.html Patch Third Party Advisory US Government Resource
http://www.kb.cert.org/vuls/id/172315 Patch Third Party Advisory US Government Resource
http://www.securityfocus.com/bid/4838 Patch Vendor Advisory
http://www.iss.net/security_center/static/9184.php
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:yahoo:messenger:5.0:*:*:*:*:*:*:*

Information

Published : 2002-07-25 21:00

Updated : 2008-09-05 13:27


NVD link : CVE-2002-0032

Mitre link : CVE-2002-0032


JSON object : View

Advertisement

dedicated server usa

Products Affected

yahoo

  • messenger