Vulnerability Details CVE-2002-1591
AOL Instant Messenger (AIM) 4.7.2480 adds free.aol.com to the Trusted Sites Zone in Internet Explorer without user approval, which could allow code from free.aol.com to bypass intended access restrictions.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 70.5%
CVSS Severity
CVSS v2 Score 7.5
References
- http://www.informationweek.com/story/IWK20010927S0021
- http://www.instantmessagingplanet.com/security/article.php/10818_1014151
- http://www.kb.cert.org/vuls/id/744139
- http://www.informationweek.com/story/IWK20010927S0021
- http://www.instantmessagingplanet.com/security/article.php/10818_1014151
- http://www.kb.cert.org/vuls/id/744139
Products affected by CVE-2002-1591
-
cpe:2.3:a:aol:instant_messenger:4.7.2480