Lucene search

[email protected]CVE-2006-4662

HistorySep 09, 2006 - 12:04 a.m.

CVE-2006-4662

2006-09-0900:04:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2006-4662

buffer overflow

aol icq pro

remote code execution

nvd

security vulnerability

8.3 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.353 Low

EPSS

Percentile

97.1%

JSON

Heap-based buffer overflow in the MCRegEx__Search function in AOL ICQ Pro 2003b Build 3916 and earlier allows remote attackers to execute arbitrary code via an inconsistent length field of a Message in a 0x2711 Type-Length-Value (TLV) type.

CPENameOperatorVersion
mirabilis:icqmirabilis icqeq2001b_build3636
mirabilis:icqmirabilis icqeq2003b
mirabilis:icqmirabilis icqeq2003a_build3777
mirabilis:icqmirabilis icqeq2003a
mirabilis:icqmirabilis icqeq2003b_build3096
mirabilis:icqmirabilis icqeq99a_2.21build1800
mirabilis:icqmirabilis icqeq2002a_build3722
mirabilis:icqmirabilis icqeq0.99b_v.3.19
mirabilis:icqmirabilis icqeq99a_2.15build1701
mirabilis:icqmirabilis icqeq2001a

CPE	Name	Operator	Version
mirabilis:icq	mirabilis icq	eq	2001b_build3636
mirabilis:icq	mirabilis icq	eq	2003b
mirabilis:icq	mirabilis icq	eq	2003a_build3777
mirabilis:icq	mirabilis icq	eq	2003a
mirabilis:icq	mirabilis icq	eq	2003b_build3096
mirabilis:icq	mirabilis icq	eq	99a_2.21build1800
mirabilis:icq	mirabilis icq	eq	2002a_build3722
mirabilis:icq	mirabilis icq	eq	0.99b_v.3.19
mirabilis:icq	mirabilis icq	eq	99a_2.15build1701
mirabilis:icq	mirabilis icq	eq	2001a

Rows per page:

1-10 of 191

References

secunia.com/advisories/21834

securityreason.com/securityalert/1530

www.coresecurity.com/index.php5?module=ContentMod&action=item&id=1509

www.kb.cert.org/vuls/id/400780

www.securityfocus.com/archive/1/445513/100/0/threaded

www.securityfocus.com/bid/19897

www.vupen.com/english/advisories/2006/3527

exchange.xforce.ibmcloud.com/vulnerabilities/28835

8.3 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.353 Low

EPSS

Percentile

97.1%

JSON

Related for CVE-2006-4662

coresecurity1