CVE-2001-1416

N/A Unknown
Published: January 18, 2001 Modified: April 16, 2026
View on NVD

Description

Multiple cross-site scripting (XSS) vulnerabilities in the log messages in certain Alpha versions of AOL Instant Messenger (AIM) 4.4 allow remote attackers to execute arbitrary web script or HTML via an image in the (1) DATA, (2) STYLE, or (3) BINARY tags.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://www.kb.cert.org/vuls/id/541384
Source: cve@mitre.org
US Government Resource
http://www.kb.cert.org/vuls/id/JARL-56TPBQ
Source: cve@mitre.org
US Government Resource
http://www.windowsitpro.com/Articles/Index.cfm?ArticleID=19811&DisplayTab=Article
Source: cve@mitre.org
http://www.kb.cert.org/vuls/id/541384
Source: af854a3a-2127-422b-91ae-364da2661108
US Government Resource
http://www.kb.cert.org/vuls/id/JARL-56TPBQ
Source: af854a3a-2127-422b-91ae-364da2661108
US Government Resource
http://www.windowsitpro.com/Articles/Index.cfm?ArticleID=19811&DisplayTab=Article
Source: af854a3a-2127-422b-91ae-364da2661108

6 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
2.3%
85th percentile
Exploitation Status
Not in CISA KEV

Affected Vendors

aol