CVE-2002-1591

critical

Description

AOL Instant Messenger (AIM) 4.7.2480 adds free.aol.com to the Trusted Sites Zone in Internet Explorer without user approval, which could allow code from free.aol.com to bypass intended access restrictions.

References

http://www.kb.cert.org/vuls/id/744139

http://www.instantmessagingplanet.com/security/article.php/10818_1014151

http://www.informationweek.com/story/IWK20010927S0021

Details

Source: Mitre, NVD

Published: 2002-04-08

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: High

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.00689