micq -- remote buffer overflow

ID DSA-012
Type debian
Reporter Debian
Modified 2001-01-22T00:00:00


PkC has reported that there is a buffer overflow in sprintf() in micq versions 0.4.6 and previous, that allows to a remote attacker able to sniff packets to the ICQ server to execute arbitrary code on the victim system.

We recommend you upgrade your micq package immediately.