Lucene search

MitreCVE-2001-1305

HistoryMay 03, 2002 - 4:00 a.m.

CVE-2001-1305

2002-05-0304:00:00

mitre

web.nvd.nist.gov

cve-2001-1305

icq 2001a alpha

remote attacks

internet explorer

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

5.6

Confidence

High

EPSS

0.004

Percentile

73.1%

JSON

ICQ 2001a Alpha and earlier allows remote attackers to automatically add arbitrary UINs to an ICQ user’s contact list via a URL to a web page with a Content-Type of application/x-icq, which is processed by Internet Explorer.

Affected configurations

Nvd

Node

mirabilisicqMatch2000.0a

mirabilisicqMatch2000.0b_build3278

mirabilisicqMatch2001a

VendorProductVersionCPE
mirabilisicq2000.0acpe:2.3:a:mirabilis:icq:2000.0a:*:*:*:*:*:*:*
mirabilisicq2000.0b_build3278cpe:2.3:a:mirabilis:icq:2000.0b_build3278:*:*:*:*:*:*:*
mirabilisicq2001acpe:2.3:a:mirabilis:icq:2001a:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
mirabilis	icq	2000.0a	cpe:2.3:a:mirabilis:icq:2000.0a:::::::*
mirabilis	icq	2000.0b_build3278	cpe:2.3:a:mirabilis:icq:2000.0b_build3278:::::::*
mirabilis	icq	2001a	cpe:2.3:a:mirabilis:icq:2001a:::::::*

References

marc.info/?l=bugtraq&m=99851887024728&w=2

www.iss.net/security_center/static/7028.php

www.securityfocus.com/bid/3226

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

5.6

Confidence

High

EPSS

0.004

Percentile

73.1%

JSON

Related for CVE-2001-1305