Cross-site scripting vulnerability AOL Instant Messenger (AIM) 4.5 and 4.7 for MacOS and Windows allows remote attackers to conduct unauthorized activities, such as adding buddies and groups to a user's buddy list, via a URL with a META HTTP-EQUIV="refresh" tag to an aim: URL.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2002-12-30 21:00
Updated : 2008-09-05 13:32
NVD link : CVE-2002-2169
Mitre link : CVE-2002-2169
JSON object : View
CWE
Products Affected
aol
- instant_messenger