Back to search
CVE-2002-0591
Published: Jun 11, 2002
Modified: Aug 8, 2024
PUBLISHED
Description
Directory traversal vulnerability in AOL Instant Messenger (AIM) 4.8 beta and earlier allows remote attackers to create arbitrary files and execute commands via a Direct Connection with an IMG tag with a SRC attribute that specifies the target filename.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
aim-direct-connection-files(8870)
vdb-entry
x_refsource_XF
4526
vdb-entry
x_refsource_BID
20020416 AIM's 'Direct Connection' feature could lead to arbitrary file creation
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now