← back
CVE-2002-2169

CVE-2002-2169

EPSS 2.4%
Cross-site scripting vulnerability AOL Instant Messenger (AIM) 4.5 and 4.7 for MacOS and Windows allows remote attackers to conduct unauthorized activities, such as adding buddies and groups to a user's buddy list, via a URL with a META HTTP-EQUIV="refresh" tag to an aim: URL.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/21619unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://online.securityfocus.com/archive/1/282443http://www.iss.net/security_center/static/9616.phphttp://www.mindflip.org/aim.htmlhttp://www.securityfocus.com/bid/5246