CVSS: 5.0EPSS: 3%CPEs: 11EXPL: 3CVE-2001-1419
https://notcve.org/view.php?id=CVE-2001-1419
AOL Instant Messenger (AIM) 4.7.2480 and earlier allows remote attackers to cause a denial of service (application crash) via an instant message that contains a large amount of "<!--" HTML comments. • http://archives.neohapsis.com/archives/bugtraq/2001-10/0014.html http://www.kb.cert.org/vuls/id/507771 http://www.kb.cert.org/vuls/id/JARL-56TPTN http://www.securityfocus.com/archive/1/247707 http://www.securityfocus.com/bid/3398 https://exchange.xforce.ibmcloud.com/vulnerabilities/7233 •
CVSS: 5.1EPSS: 0%CPEs: 1EXPL: 0CVE-2001-1416
https://notcve.org/view.php?id=CVE-2001-1416
Multiple cross-site scripting (XSS) vulnerabilities in the log messages in certain Alpha versions of AOL Instant Messenger (AIM) 4.4 allow remote attackers to execute arbitrary web script or HTML via an image in the (1) DATA, (2) STYLE, or (3) BINARY tags. • http://www.kb.cert.org/vuls/id/541384 http://www.kb.cert.org/vuls/id/JARL-56TPBQ http://www.windowsitpro.com/Articles/Index.cfm?ArticleID=19811&DisplayTab=Article •