CVE-2002-0472

Опубликовано: 12 авг. 2002

Источник: nvd

CVSS2: 5

EPSS Средний

Описание

MSN Messenger Service 3.6, and possibly other versions, uses weak authentication when exchanging messages between clients, which allows remote attackers to spoof messages from other users.

Ссылки

http://www.encode-sec.com/esp0202.pdf
http://www.iss.net/security_center/static/8582.php
Vendor Advisory
http://www.securityfocus.com/archive/1/262906
Vendor Advisory
http://www.securityfocus.com/bid/4316
Vendor Advisory
http://www.encode-sec.com/esp0202.pdf
http://www.iss.net/security_center/static/8582.php
Vendor Advisory
http://www.securityfocus.com/archive/1/262906
Vendor Advisory
http://www.securityfocus.com/bid/4316
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:microsoft:msn_messenger:3.6:*:*:*:*:*:*:*

EPSS

Процентиль: 94%

0.1519

Средний

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-5fj2-ghpc-2v79

github

почти 4 года назад