Lucene search
HistoryJan 18, 2011 - 6:03 p.m.
CVE-2011-0487
icq 7
update vulnerability
code execution
cve-2011-0487
nvd
7.5 High
AI Score
Confidence
High
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.003 Low
EPSS
Percentile
71.5%
ICQ 7 does not verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a crafted file that is fetched through an automatic-update mechanism.
Related
cvelist
cvelist
CVE-2011-0487
2011-01-18 17:00:00
openvas
openvas
ICQ 7 Instant Messaging Client Remote Code Execution Vulnerability
2011-01-21 00:00:00
ICQ 7 Instant Messaging Client RCE Vulnerability
2011-01-21 00:00:00
kaspersky
kaspersky
KLA10427 ACE vulnerability in ICQ
2011-01-13 00:00:00
prion
prion
Code injection
2011-01-18 18:03:00
7.5 High
AI Score
Confidence
High
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.003 Low
EPSS
Percentile
71.5%
Related for CVE-2011-0487