CVE-2006-0766

ICQ Inc. (formerly Mirabilis) ICQ 2003a, 2003b, Lite 4.0, Lite 4.1, and possibly other Windows versions allows user-assisted remote attackers to hide malicious file extensions and bypass Windows security warnings via a filename that ends in an assumed-safe extension such as JPG, and possibly containing other modified properties such as company name, icon, and description, which could trick a user into executing arbitrary programs.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:mirabilis:icq:2003a:*:*:*:*:*:*:*
cpe:2.3:a:mirabilis:icq:2003b:*:*:*:*:*:*:*
cpe:2.3:a:mirabilis:icq_lite:4.0:*:*:*:*:*:*:*
cpe:2.3:a:mirabilis:icq_lite:4.1:*:*:*:*:*:*:*

History

No history.

Information

Published : 2006-02-18 02:02

Updated : 2024-02-28 10:42


NVD link : CVE-2006-0766

Mitre link : CVE-2006-0766

CVE.ORG link : CVE-2006-0766


JSON object : View

Products Affected

mirabilis

  • icq_lite
  • icq