← CVECheck
HomeVulnerabilities

CVE-2002-2361 — MEDIUM severity vulnerability (The installer in Yahoo! Messenger 4.0, 5.0 and 5.5 does not)

The installer in Yahoo! Messenger 4.0, 5.0 and 5.5 does not verify package signatures which could allow remote attackers to install trojan programs via DNS spoofing.

CVE IDCVE-2002-2361
SeverityMEDIUM
CVSS score5.8
CVSS vectorAV:N/AC:M/Au:N/C:P/I:P/A:N
CWECWE-264
StatusModified
Published2002-12-31
Last modified2026-04-16
DescriptionThe installer in Yahoo! Messenger 4.0, 5.0 and 5.5 does not verify package signatures which could allow remote attackers to install trojan programs via DNS spoofing.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →