Vulnerability in Aol Instant_messenger
CVE-2002-0591
Directory traversal vulnerability in AOL Instant Messenger (AIM) 4.8 beta and earlier allows remote attackers to create arbitrary files and execute commands via a Direct Connection with an IMG tag with a SRC attribute that specifies the ta…
EPSS: 0.116 (95.5th percentile) — read the EPSS interpretation.
Affected products
- Aol Instant_messenger — versions 4.0, 4.1, 4.2
- N/a — versions n/a
References
- cve@mitre.org (Patch, vdb-entry, Vendor Advisory, x_refsource_XF)
- cve@mitre.org (Exploit, vdb-entry, x_refsource_BID, Vendor Advisory)
- cve@mitre.org (Vendor Advisory, mailing-list, Exploit, x_refsource_BUGTRAQ, Patch)