Icq Security Vulnerabilities and Issues — Icq CVE List

Lucene search

MirabilisIcq

12 matches found

CVE•added 2006/02/18 2:2 a.m.•44 views

CVE-2006-0766

ICQ Inc. (formerly Mirabilis) ICQ 2003a, 2003b, Lite 4.0, Lite 4.1, and possibly other Windows versions allows user-assisted remote attackers to hide malicious file extensions and bypass Windows security warnings via a filename that ends in an assumed-safe extension such as JPG, and possibly contai...

5.1CVSS6.9AI score0.00162EPSS

CVE•added 2000/07/12 4:0 a.m.•43 views

CVE-2000-0564

The guestbook CGI program in ICQ Web Front service for ICQ 2000a, 99b, and others allows remote attackers to cause a denial of service via a URL with a long name parameter.

5CVSS5.4AI score0.00634EPSS

CVE•added 2002/05/03 4:0 a.m.•43 views

CVE-2001-1305

ICQ 2001a Alpha and earlier allows remote attackers to automatically add arbitrary UINs to an ICQ user's contact list via a URL to a web page with a Content-Type of application/x-icq, which is processed by Internet Explorer.

5CVSS5.6AI score0.00522EPSS

CVE•added 2005/07/14 4:0 a.m.•41 views

CVE-2002-2075

ICQ 2001a and 2002b allows remote attackers to cause a denial of service (memory consumption and hang) via a contact message with a large contacts number.

5CVSS7AI score0.01168EPSS

CVE•added 1999/09/29 4:0 a.m.•40 views

CVE-1999-0474

The ICQ Webserver allows remote attackers to use .. to access arbitrary files outside of the user's personal directory.

5CVSS7.2AI score0.008EPSS

CVE•added 2006/02/18 2:2 a.m.•39 views

CVE-2006-0765

GUI display truncation vulnerability in ICQ Inc. (formerly Mirabilis) ICQ 2003a, 2003b, Lite 4.0, Lite 4.1, and possibly other Windows versions allows user-assisted remote attackers to hide malicious file extensions, bypass Windows security warnings via a filename that is all uppercase and of a spe...

5.1CVSS6.8AI score0.00162EPSS

CVE•added 2001/06/27 4:0 a.m.•38 views

CVE-2001-0367

Mirabilis ICQ WebFront Plug-in ICQ2000b Build 3278 allows a remote attacker to create a denial of service via HTTP URL requests containing a large number of % characters.

5CVSS5.5AI score0.00634EPSS

CVE•added 2003/05/27 4:0 a.m.•36 views

CVE-2003-0239

icqateimg32.dll parsing/rendering library in Mirabilis ICQ Pro 2003a allows remote attackers to cause a denial of service via malformed GIF89a headers that do not contain a GCT (Global Color Table) or an LCT (Local Color Table) after an Image Descriptor.

5CVSS5.5AI score0.01282EPSS

CVE•added 2003/05/27 4:0 a.m.•35 views

CVE-2003-0238

The Message Session window in Mirabilis ICQ Pro 2003a allows remote attackers to cause a denial of service (CPU consumption) by spoofing the address of an ADS server and sending HTML with a -1 width in a table tag.

5CVSS5.4AI score0.01118EPSS

CVE•added 2005/06/21 4:0 a.m.•34 views

CVE-2002-1743

AOL ICQ 2002a Build 3722 allows remote attackers to cause a denial of service (crash) via a malformed .hpf file.

5CVSS6.9AI score0.01099EPSS

CVE•added 2002/05/29 4:0 a.m.•31 views

CVE-2002-0254

ICQ 2001b Build 3659 allows remote attackers to cause a denial of service (crash) via a malformed picture that contains large height and width values, which causes the crash when viewed in Userdetails.

5CVSS7AI score0.00975EPSS

CVE•added 2005/11/02 11:2 a.m.•30 views

CVE-2005-3433

Buffer overflow in Mirabilis ICQ 2003a allows user-assisted attackers to execute arbitrary code by convincing a user to enter long strings into the First Name and Last Name fields.

5.1CVSS8.1AI score0.00806EPSS