Unrated severityNVD Advisory· Published Dec 31, 2002· Updated Jun 16, 2026
CVE-2002-2169
CVE-2002-2169
Description
Cross-site scripting vulnerability AOL Instant Messenger (AIM) 4.5 and 4.7 for MacOS and Windows allows remote attackers to conduct unauthorized activities, such as adding buddies and groups to a user's buddy list, via a URL with a META HTTP-EQUIV="refresh" tag to an aim: URL.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4cpe:2.3:a:aol:instant_messenger:4.5:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:aol:instant_messenger:4.5:*:*:*:*:*:*:*
- cpe:2.3:a:aol:instant_messenger:4.7:*:*:*:*:*:*:*
- cpe:2.3:a:aol:instant_messenger:4.7.2480:*:*:*:*:*:*:*
- (no CPE)range: 4.5, 4.7
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.