VDB
CVE-2002-0005
CVE-2002-0005
PUBLISHED
CVSS 10 CRITICAL
Buffer overflow in AOL Instant Messenger (AIM) 4.7.2480, 4.8.2616, and other versions allows remote attackers to execute arbitrary code via a long argument in a game request (AddGame).
EPSS 27.93% · 96.6th percentile
Risk Scores
CVSS 2.0
10
EPSS Score
27.93%
96.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| aol | instant_messenger | 4.3, 4.3.2229, 4.4 |
| n/a | n/a | n/a |
Timeline
- Jan 31, 2002 CVE Published
- Sep 23, 2010 PoC Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 27, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- May 26, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
References
- aim-game-overflow(7743) vdb
- VU#907819 third-party-advisory
- 20020102 w00w00 on AOL Instant Messenger (serious vulnerability) mailing-list
- 20020102 AIM addendum mailing-list
- 3769 vdb
- 20020102 w00w00 on AOL Instant Messenger (serious vulnerability) mailing-list
- 20020102 AIM addendum mailing-list
- https://nvd.nist.gov/vuln/detail/CVE-2002-0005 advisory