CVE: CVE-2002-0321 - CVE-Search

CVE Details for CVE: CVE-2002-0321

Summary

Yahoo! Messenger 5.0 allows remote attackers to spoof other users by modifying the username and using the spoofed username for social engineering or denial of service (flooding) attacks.

Timestamps
Last major update	18-10-2016 - 02:19
Published	25-06-2002 - 04:00
Last modified	18-10-2016 - 02:19

References

http://www.iss.net/security_center/static/8267.php
http://www.securityfocus.com/bid/4164
http://www.kb.cert.org/vuls/id/952875
http://www.cert.org/advisories/CA-2002-16.html
http://marc.info/?l=bugtraq&m=101439616623230&w=2

Vulnerable Configurations

cpe:2.3:a:yahoo:messenger:5.0:*:*:*:*:*:*:*
cpe:2.3:a:yahoo:messenger:5.0:*:*:*:*:*:*:*

CAPEC

Click the CAPEC title to display a description

CWE

NVD-CWE-Other

CVSS

Base

5.0

Impact

2.9

Exploitability

10.0

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	PARTIAL	NONE

CVSS3

None

VIA4 references

cvss-vector via4

AV:N/AC:L/Au:N/C:N/I:P/A:N

refmap via4

bid	4164
bugtraq	20020221 Remote crashes in Yahoo messenger
cert	CA-2002-16
cert-vn	VU#952875
xf	yahoo-messenger-username-spoof(8267)