CVE-2002-0228
First published: Fri May 03 2002(Updated: )
Microsoft MSN Messenger allows remote attackers to use Javascript that references an ActiveX object to obtain sensitive information such as display names and web site navigation, and possibly more when the user is connected to certain Microsoft sites (or DNS-spoofed sites).
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft MSN Messenger | =4.6 | |
| Microsoft MSN Messenger | =2.2 | |
| Microsoft MSN Messenger | =4.0 | |
| Microsoft MSN Messenger | =4.5 | |
| Microsoft MSN Messenger | =3.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-historical
- collector/nvd-index
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/type
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/remedy
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/microsoft
- canonical/microsoft msn messenger
- version/microsoft msn messenger/4.6
- version/microsoft msn messenger/2.2
- version/microsoft msn messenger/4.0
- version/microsoft msn messenger/4.5
- version/microsoft msn messenger/3.0