Lucene search

[email protected]CVE-2002-0320

HistoryJun 25, 2002 - 4:00 a.m.

CVE-2002-0320

2002-06-2504:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2002-0320

yahoo! messenger vulnerability

buffer overflow

dos attacks

code execution

8.2 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.154 Low

EPSS

Percentile

95.8%

JSON

Buffer overflow in Yahoo! Messenger 5.0 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long (1) message or (2) IMvironment field.

CPENameOperatorVersion
yahoo:messengeryahoo messengereq5.0

CPE	Name	Operator	Version
yahoo:messenger	yahoo messenger	eq	5.0

References

marc.info/?l=bugtraq&m=101439616623230&w=2

www.cert.org/advisories/CA-2002-16.html

www.iss.net/security_center/static/8264.php

www.iss.net/security_center/static/8265.php

www.kb.cert.org/vuls/id/419419

www.kb.cert.org/vuls/id/887319

www.securityfocus.com/bid/4162

www.securityfocus.com/bid/4163

Social References

8.2 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.154 Low

EPSS

Percentile

95.8%

JSON

Related for CVE-2002-0320

cert2 openvas1