Lucene search

[email protected]CVE-2003-1503

HistoryDec 31, 2003 - 5:00 a.m.

CVE-2003-1503

2003-12-3105:00:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2003-1503

buffer overflow

aol instant messenger

aim 5.2.3292

remote code execution

security vulnerability

8.7 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.054 Low

EPSS

Percentile

93.1%

JSON

Buffer overflow in AOL Instant Messenger (AIM) 5.2.3292 allows remote attackers to execute arbitrary code via an aim:getfile URL with a long screen name.

CPENameOperatorVersion
aol:instant_messengeraol instant messengereq5.2.3292

CPE	Name	Operator	Version
aol:instant_messenger	aol instant messenger	eq	5.2.3292

References

archives.neohapsis.com/archives/ntbugtraq/2003-q4/0059.html

www.digitalpranksters.com/advisories/aol/AIMProtocolBO.html

www.securityfocus.com/bid/8825

exchange.xforce.ibmcloud.com/vulnerabilities/13443

8.7 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.054 Low

EPSS

Percentile

93.1%

JSON