CVE-2002-1953

2022-10-0316:23:47

mitre

www.cve.org

aol instant messenger

buffer overflow

denial of service

7.1 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

74.2%

JSON

Heap-based buffer overflow in the goim handler of AOL Instant Messenger (AIM) 4.4 through 4.8.2616 allows remote attackers to cause a denial of service (crash) via escaping of the screen name parameter, which triggers the overflow when the user selects “Get Info” on the buddy.

References

online.securityfocus.com/archive/1/288980

www.iss.net/security_center/static/9950.php

www.securityfocus.com/bid/5492