KLA10427ACE vulnerability in ICQ

2011-01-13T00:00:00
ID KLA10427
Type kaspersky
Reporter Kaspersky Lab
Modified 2019-03-07T00:00:00

Description

Detect date:

01/13/2011

Severity:

Critical

Description:

Insecure updates were found in ICQ 7. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely by spoofing the update server.

Affected products:

ICQ 7 versions earlier than 7.4.4629

Solution:

Update to latest version
ICQ

Original advisories:

SecurityFocus
xforce

Impacts:

ACE

CVE-IDS:

CVE-2011-04879.3Critical