18 matches found
EUVD-2002-0224
Malware in sbrugna...
KICQ 1.0 - Remote Arbitrary Command Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2443/info KICQ is an ICQ-compatible interactive messaging client for Unix. Versions of KICQ are vulnerable to remote execution of arbitrary commands embedded in URLs. A maliciously-composed URL containing shell...
kicq 2.0.0b1 Invalid ICQ Packet Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4018/info kicq 2.0.0b1 is an ICQ client for the K Desktop Environment KDE. kicq can be crashed remotely by initiating a telnet connection to a port it is listening on and sending random characters. This does not affect...
CVE-2002-0227
KICQ 2.0.0b1 allows remote attackers to cause a denial of service crash via a malformed message...
CVE-2002-0227
KICQ 2.0.0b1 allows remote attackers to cause a denial of service crash via a malformed message...
CVE-2002-0227
KICQ 2.0.0b1 is affected by a remote denial-of-service via a malformed message. The provided sources state that sending a malformed message can cause the application to crash, indicating a network-accessible trigger without required authentication. The exact root cause, vulnerable component, affe...
KICQ 2.0.0b1 can be remotely crashed
KICQ is an ICQ client, specifically designed for the KDE. Versions affected: KICQ 2.0.0b1 using icqlib 1.0.0 Description KICQ can be remotely crashed in a very simple way. Just telnet the machine on wich KICQ is running on the port it's bound and feed some garbage. bash-2.05$ telnet 10.0.0.1 1030...
DoS против kicq
Приложение вылетает при получении случайных данных в открытый TCP порт...
kicq 2.0.0b1 - Invalid ICQ Packet Denial of Service
kicq 2.0.0b1 - Invalid ICQ Packet Denial of Service source: https://www.securityfocus.com/bid/4018/info kicq 2.0.0b1 is an ICQ client for the K Desktop Environment KDE. kicq can be crashed remotely by initiating a telnet connection to a port it is listening on and sending "random" characters. Thi...
kicq 2.0.0b1 - Invalid ICQ Packet Denial of Service
source: https://www.securityfocus.com/bid/4018/info kicq 2.0.0b1 is an ICQ client for the K Desktop Environment KDE. kicq can be crashed remotely by initiating a telnet connection to a port it is listening on and sending "random" characters. This does not affect other components of the system, on...
CVE-2001-0274
The CVE-2001-0274 entry affects the kicq IRC client (version 1.0.0 and possibly later). The root cause is the processing of a URL containing shell metacharacters that enables remote attackers to execute arbitrary commands on the affected host. The provided documents do not include exploitation de...
CVE-2001-0274
kicq IRC client 1.0.0, and possibly later versions, allows remote attackers to execute arbitrary commands via shell metacharacters in a URL...
CVE-2001-0274
kicq IRC client 1.0.0, and possibly later versions, allows remote attackers to execute arbitrary commands via shell metacharacters in a URL...
Дыра в kicq / licq
Можно вставить шелл-код в URL...
Re: Security hole in kicq
I tried with version 1.0.0, it is vulnerable for sure. Other versions such as 2.0.0b1 seem to be vulerable as well, though i did not compile them to try. one little try shows that licq http://licq.org is vulerable too however the complete url will be visible to the user. greets, Wolter...
KICQ 1.0 - Arbitrary Command Execution
KICQ 1.0 - Arbitrary Command Execution source: https://www.securityfocus.com/bid/2443/info KICQ is an ICQ-compatible interactive messaging client for Unix. Versions of KICQ are vulnerable to remote execution of arbitrary commands embedded in URLs. A maliciously-composed URL containing shell...
KICQ 1.0 - Arbitrary Command Execution
source: https://www.securityfocus.com/bid/2443/info KICQ is an ICQ-compatible interactive messaging client for Unix. Versions of KICQ are vulnerable to remote execution of arbitrary commands embedded in URLs. A maliciously-composed URL containing shell metacharacters and shell commands can be sen...
Security hole in kicq
Hi all, there is some security related problem with kicq. The authors were contacted and provided with a suggestion for a patch which should be available soon. I did not find anything on the archive on this, so here we go. kicq is a free icq client clone available at http://kicq.sourceforge.net/...