Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0032

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2002-0032
Last Modified 05 Sep 2008 04:27:00
Published 26 Jul 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0032

Summary

Yahoo! Messenger 5,0,0,1064 and earlier allows remote attackers to execute arbitrary script as other users via the addview parameter of a ymsgr URI.

Vulnerable Systems

Application

  • Yahoo Messenger 5.0


References

CERT-VN - VU#172315

CERT - CA-2002-16

BID - 4838

BUGTRAQ - 20020527 Yahoo Messenger - Multiple Vulnerabilities

XF - yahoo-messenger-script-injection(9184)


Last Updated: 27 May 2016 10:36:45