CVE-2002-0322
https://notcve.org/view.php?id=CVE-2002-0322
Yahoo! Messenger 4.0 sends user passwords in cleartext, which could allow remote attackers to gain privileges of other users via sniffing. • http://marc.info/?l=bugtraq&m=101466489113920&w=2 http://marc.info/?l=bugtraq&m=101467298107635&w=2 http://www.securityfocus.com/bid/4173 •
CVE-2002-0321
https://notcve.org/view.php?id=CVE-2002-0321
Yahoo! Messenger 5.0 allows remote attackers to spoof other users by modifying the username and using the spoofed username for social engineering or denial of service (flooding) attacks. • http://marc.info/?l=bugtraq&m=101439616623230&w=2 http://www.cert.org/advisories/CA-2002-16.html http://www.iss.net/security_center/static/8267.php http://www.kb.cert.org/vuls/id/952875 http://www.securityfocus.com/bid/4164 •