7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
6.5 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
21.7%
The default configuration of the America Online (AOL) client software allows all users to modify a certain registry value that specifies a DLL file name, which might allow local users to gain privileges via a Trojan horse program.
CPE | Name | Operator | Version |
---|---|---|---|
aol:aol_client_software | aol aol client software | eq | 8.0 |
aol:aol_client_software | aol aol client software | eq | 9.0 |