Vulnerability Description
Yahoo! Messenger 5.0 allows remote attackers to spoof other users by modifying the username and using the spoofed username for social engineering or denial of service (flooding) attacks.
CVSS Score
5.0
MEDIUM
AV:N/AC:L/Au:N/C:N/I:P/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Yahoo | Messenger | 5.0 |
References
- http://marc.info/?l=bugtraq&m=101439616623230&w=2
- http://www.cert.org/advisories/CA-2002-16.htmlUS Government Resource
- http://www.iss.net/security_center/static/8267.phpPatchVendor Advisory
- http://www.kb.cert.org/vuls/id/952875US Government Resource
- http://www.securityfocus.com/bid/4164Vendor Advisory
- http://marc.info/?l=bugtraq&m=101439616623230&w=2
- http://www.cert.org/advisories/CA-2002-16.htmlUS Government Resource
- http://www.iss.net/security_center/static/8267.phpPatchVendor Advisory
- http://www.kb.cert.org/vuls/id/952875US Government Resource
- http://www.securityfocus.com/bid/4164Vendor Advisory
FAQ
What is CVE-2002-0321?
CVE-2002-0321 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Yahoo! Messenger 5.0 allows remote attackers to spoof other users by modifying the username and using the spoofed username for social engineering or denial of service (flooding) attacks.
How severe is CVE-2002-0321?
CVE-2002-0321 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-0321?
Check the references section above for vendor advisories and patch information. Affected products include: Yahoo Messenger.