CVE-2002-0472

CVE Database · CVE-2002-0472

CVE-2002-0472

· N/AModified

CVSS v3.1

N/A

EPSS

11.88%

Published

Aug 12, 2002

Modified

Apr 15, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

MSN Messenger Service 3.6, and possibly other versions, uses weak authentication when exchanging messages between clients, which allows remote attackers to spoof messages from other users.

Affected Products (1)

microsoft · msn_messengervulnerable

References (8)

http://www.encode-sec.com/esp0202.pdf

http://www.iss.net/security_center/static/8582.php

Vendor Advisory

http://www.securityfocus.com/archive/1/262906

Vendor Advisory

http://www.securityfocus.com/bid/4316

Vendor Advisory

http://www.encode-sec.com/esp0202.pdf

http://www.iss.net/security_center/static/8582.php

Vendor Advisory

http://www.securityfocus.com/archive/1/262906

Vendor Advisory

http://www.securityfocus.com/bid/4316

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs