Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2004-2373

Опубликовано: 31 дек. 2004
Источник: nvd
CVSS2: 7.5
EPSS Низкий

Описание

The Buddy icon file for AOL Instant Messenger (AIM) 4.3 through 5.5 is created in a predictable location, which may allow remote attackers to use a shell: URI to exploit other vulnerabilities that involve predictable locations.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:aol:instant_messenger:4.3:*:*:*:*:*:*:*
cpe:2.3:a:aol:instant_messenger:4.3.2229:*:*:*:*:*:*:*
cpe:2.3:a:aol:instant_messenger:4.4:*:*:*:*:*:*:*
cpe:2.3:a:aol:instant_messenger:4.5:*:*:*:*:*:*:*
cpe:2.3:a:aol:instant_messenger:4.6:*:*:*:*:*:*:*
cpe:2.3:a:aol:instant_messenger:4.7:*:*:*:*:*:*:*
cpe:2.3:a:aol:instant_messenger:4.7.2480:*:*:*:*:*:*:*
cpe:2.3:a:aol:instant_messenger:4.8.2616:*:*:*:*:*:*:*
cpe:2.3:a:aol:instant_messenger:4.8.2646:*:*:*:*:*:*:*
cpe:2.3:a:aol:instant_messenger:4.8.2790:*:*:*:*:*:*:*
cpe:2.3:a:aol:instant_messenger:5.0.2938:*:*:*:*:*:*:*
cpe:2.3:a:aol:instant_messenger:5.1.3036:*:*:*:*:*:*:*
cpe:2.3:a:aol:instant_messenger:5.2.3292:*:*:*:*:*:*:*
cpe:2.3:a:aol:instant_messenger:5.5:*:*:*:*:*:*:*
cpe:2.3:a:aol:instant_messenger:5.5.3415_beta:*:*:*:*:*:*:*

EPSS

Процентиль: 86%
0.03062
Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

github логотип

GHSA-mmhh-3qp8-q89m

github
почти 4 года назад

The Buddy icon file for AOL Instant Messenger (AIM) 4.3 through 5.5 is created in a predictable location, which may allow remote attackers to use a shell: URI to exploit other vulnerabilities that involve predictable locations.

EPSS

Процентиль: 86%
0.03062
Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other