- Description
- Directory traversal vulnerability in AOL Instant Messenger (AIM) 4.8.2790 allows remote attackers to execute arbitrary programs by specifying the program in the href attribute of a link.
- Source
- cve@mitre.org
- NVD status
- Analyzed
CVSS 2.0
- Type
- Primary
- Base score
- 2.6
- Impact score
- 2.9
- Exploitability score
- 4.9
- Vector string
- AV:N/AC:H/Au:N/C:N/I:P/A:N
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:aol:instant_messenger:4.7.2480:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "11FCCE0C-E6F9-4A01-872E-38C5F23C479E"
},
{
"criteria": "cpe:2.3:a:aol:instant_messenger:4.8.2616:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E80E2514-9F43-48FB-B55E-094F45088D7C"
},
{
"criteria": "cpe:2.3:a:aol:instant_messenger:4.8.2646:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2E553111-8B78-4B66-95BC-FD0EE897DDC4"
},
{
"criteria": "cpe:2.3:a:aol:instant_messenger:5.0.2938:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "81FDEE59-4E96-4AA7-BE33-9199CF9EA9BB"
}
],
"operator": "OR"
}
]
}
]