Vulnerability Details CVE-2002-0005
Buffer overflow in AOL Instant Messenger (AIM) 4.7.2480, 4.8.2616, and other versions allows remote attackers to execute arbitrary code via a long argument in a game request (AddGame).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.279
EPSS Ranking 96.1%
CVSS Severity
CVSS v2 Score 10.0
References
- http://marc.info/?l=ntbugtraq&m=100998295512885&w=2
- http://www.kb.cert.org/vuls/id/907819
- http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0201&L=ntbugtraq&F=P&S=&P=198
- http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0201&L=ntbugtraq&F=P&S=&P=72
- http://www.securityfocus.com/archive/1/247944
- http://www.securityfocus.com/bid/3769
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7743
- http://marc.info/?l=ntbugtraq&m=100998295512885&w=2
- http://www.kb.cert.org/vuls/id/907819
- http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0201&L=ntbugtraq&F=P&S=&P=198
- http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0201&L=ntbugtraq&F=P&S=&P=72
- http://www.securityfocus.com/archive/1/247944
- http://www.securityfocus.com/bid/3769
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7743
Products affected by CVE-2002-0005
-
cpe:2.3:a:aol:instant_messenger:4.3
-
cpe:2.3:a:aol:instant_messenger:4.3.2229
-
cpe:2.3:a:aol:instant_messenger:4.4
-
cpe:2.3:a:aol:instant_messenger:4.5
-
cpe:2.3:a:aol:instant_messenger:4.6
-
cpe:2.3:a:aol:instant_messenger:4.7
-
cpe:2.3:a:aol:instant_messenger:4.7.2480
-
cpe:2.3:a:aol:instant_messenger:4.8.2616