Cross-site scripting vulnerability AOL Instant Messenger (AIM) 4.5 and 4.7 for MacOS and Windows allows remote malicious users to conduct unauthorized activities, such as adding buddies and groups to a user's buddy list, via a URL with a META HTTP-EQUIV="refresh" tag to an aim: URL.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
aol instant messenger 4.7 |
||
aol instant messenger 4.5 |
||
aol instant messenger 4.7.2480 |