EUVD-2002-0224

Malware in sbrugna...

KICQ 1.0 - Remote Arbitrary Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2443/info KICQ is an ICQ-compatible interactive messaging client for Unix. Versions of KICQ are vulnerable to remote execution of arbitrary commands embedded in URLs. A maliciously-composed URL containing shell...

kicq 2.0.0b1 Invalid ICQ Packet Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/4018/info kicq 2.0.0b1 is an ICQ client for the K Desktop Environment KDE. kicq can be crashed remotely by initiating a telnet connection to a port it is listening on and sending random characters. This does not affect...

CVE-2002-0227

KICQ 2.0.0b1 allows remote attackers to cause a denial of service crash via a malformed message...

CVE-2002-0227

KICQ 2.0.0b1 allows remote attackers to cause a denial of service crash via a malformed message...

CVE-2002-0227

KICQ 2.0.0b1 is affected by a remote denial-of-service via a malformed message. The provided sources state that sending a malformed message can cause the application to crash, indicating a network-accessible trigger without required authentication. The exact root cause, vulnerable component, affe...

KICQ 2.0.0b1 can be remotely crashed

KICQ is an ICQ client, specifically designed for the KDE. Versions affected: KICQ 2.0.0b1 using icqlib 1.0.0 Description KICQ can be remotely crashed in a very simple way. Just telnet the machine on wich KICQ is running on the port it's bound and feed some garbage. bash-2.05$ telnet 10.0.0.1 1030...

DoS против kicq

Приложение вылетает при получении случайных данных в открытый TCP порт...

kicq 2.0.0b1 - Invalid ICQ Packet Denial of Service

kicq 2.0.0b1 - Invalid ICQ Packet Denial of Service source: https://www.securityfocus.com/bid/4018/info kicq 2.0.0b1 is an ICQ client for the K Desktop Environment KDE. kicq can be crashed remotely by initiating a telnet connection to a port it is listening on and sending "random" characters. Thi...

kicq 2.0.0b1 - Invalid ICQ Packet Denial of Service

source: https://www.securityfocus.com/bid/4018/info kicq 2.0.0b1 is an ICQ client for the K Desktop Environment KDE. kicq can be crashed remotely by initiating a telnet connection to a port it is listening on and sending "random" characters. This does not affect other components of the system, on...

CVE-2001-0274

kicq IRC client 1.0.0, and possibly later versions, allows remote attackers to execute arbitrary commands via shell metacharacters in a URL...

CVE-2001-0274

The CVE-2001-0274 entry affects the kicq IRC client (version 1.0.0 and possibly later). The root cause is the processing of a URL containing shell metacharacters that enables remote attackers to execute arbitrary commands on the affected host. The provided documents do not include exploitation de...

CVE-2001-0274

kicq IRC client 1.0.0, and possibly later versions, allows remote attackers to execute arbitrary commands via shell metacharacters in a URL...

Дыра в kicq / licq

Можно вставить шелл-код в URL...

Re: Security hole in kicq

I tried with version 1.0.0, it is vulnerable for sure. Other versions such as 2.0.0b1 seem to be vulerable as well, though i did not compile them to try. one little try shows that licq http://licq.org is vulerable too however the complete url will be visible to the user. greets, Wolter...

KICQ 1.0 - Arbitrary Command Execution

source: https://www.securityfocus.com/bid/2443/info KICQ is an ICQ-compatible interactive messaging client for Unix. Versions of KICQ are vulnerable to remote execution of arbitrary commands embedded in URLs. A maliciously-composed URL containing shell metacharacters and shell commands can be sen...

KICQ 1.0 - Arbitrary Command Execution

KICQ 1.0 - Arbitrary Command Execution source: https://www.securityfocus.com/bid/2443/info KICQ is an ICQ-compatible interactive messaging client for Unix. Versions of KICQ are vulnerable to remote execution of arbitrary commands embedded in URLs. A maliciously-composed URL containing shell...

Security hole in kicq

Hi all, there is some security related problem with kicq. The authors were contacted and provided with a suggestion for a patch which should be available soon. I did not find anything on the archive on this, so here we go. kicq is a free icq client clone available at http://kicq.sourceforge.net/...