CVE-2006-4662

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2006-4662
Heap-based buffer overflow in the MCRegEx__Search function in AOL ICQ Pro 2003b Build 3916 and earlier allows remote attackers to execute arbitrary code via an inconsistent length field of a Message in a 0x2711 Type-Length-Value (TLV) type.

7.5 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References
Link Resource
http://secunia.com/advisories/21834
http://securityreason.com/securityalert/1530
http://www.coresecurity.com/index.php5?module=ContentMod&action=item&id=1509 Patch Vendor Advisory
http://www.kb.cert.org/vuls/id/400780 US Government Resource
http://www.securityfocus.com/archive/1/445513/100/0/threaded
http://www.securityfocus.com/bid/19897 Patch
http://www.vupen.com/english/advisories/2006/3527
https://exchange.xforce.ibmcloud.com/vulnerabilities/28835
http://secunia.com/advisories/21834
http://securityreason.com/securityalert/1530
http://www.coresecurity.com/index.php5?module=ContentMod&action=item&id=1509 Patch Vendor Advisory
http://www.kb.cert.org/vuls/id/400780 US Government Resource
http://www.securityfocus.com/archive/1/445513/100/0/threaded
http://www.securityfocus.com/bid/19897 Patch
http://www.vupen.com/english/advisories/2006/3527
https://exchange.xforce.ibmcloud.com/vulnerabilities/28835
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:mirabilis:icq:0.99b_1.1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:mirabilis:icq:0.99b_v.3.19:*:*:*:*:*:*:*
cpe:2.3:a:mirabilis:icq:98.0a:*:*:*:*:*:*:*
cpe:2.3:a:mirabilis:icq:99a_2.15build1701:*:*:*:*:*:*:*
cpe:2.3:a:mirabilis:icq:99a_2.21build1800:*:*:*:*:*:*:*
cpe:2.3:a:mirabilis:icq:2000.0a:*:*:*:*:*:*:*
cpe:2.3:a:mirabilis:icq:2000.0b_build3278:*:*:*:*:*:*:*
cpe:2.3:a:mirabilis:icq:2001a:*:*:*:*:*:*:*
cpe:2.3:a:mirabilis:icq:2001b_build3636:*:*:*:*:*:*:*
cpe:2.3:a:mirabilis:icq:2001b_build3638:*:*:*:*:*:*:*
cpe:2.3:a:mirabilis:icq:2001b_build3659:*:*:*:*:*:*:*
cpe:2.3:a:mirabilis:icq:2002a_build3722:*:*:*:*:*:*:*
cpe:2.3:a:mirabilis:icq:2002a_build3727:*:*:*:*:*:*:*
cpe:2.3:a:mirabilis:icq:2003a:*:*:*:*:*:*:*
cpe:2.3:a:mirabilis:icq:2003a_build3777:*:*:*:*:*:*:*
cpe:2.3:a:mirabilis:icq:2003a_build3799:*:*:*:*:*:*:*
cpe:2.3:a:mirabilis:icq:2003a_build3800:*:*:*:*:*:*:*
cpe:2.3:a:mirabilis:icq:2003b:*:*:*:*:*:*:*
cpe:2.3:a:mirabilis:icq:2003b_build3096:*:pro:*:*:*:*:*
History

21 Nov 2024, 00:16

Type Values Removed Values Added
References () http://secunia.com/advisories/21834 - () http://secunia.com/advisories/21834 -
References () http://securityreason.com/securityalert/1530 - () http://securityreason.com/securityalert/1530 -
References () http://www.coresecurity.com/index.php5?module=ContentMod&action=item&id=1509 - Patch, Vendor Advisory () http://www.coresecurity.com/index.php5?module=ContentMod&action=item&id=1509 - Patch, Vendor Advisory
References () http://www.kb.cert.org/vuls/id/400780 - US Government Resource () http://www.kb.cert.org/vuls/id/400780 - US Government Resource
References () http://www.securityfocus.com/archive/1/445513/100/0/threaded - () http://www.securityfocus.com/archive/1/445513/100/0/threaded -
References () http://www.securityfocus.com/bid/19897 - Patch () http://www.securityfocus.com/bid/19897 - Patch
References () http://www.vupen.com/english/advisories/2006/3527 - () http://www.vupen.com/english/advisories/2006/3527 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/28835 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/28835 -
Information

Published : 2006-09-09 00:04

Updated : 2024-11-21 00:16

NVD link : CVE-2006-4662

Mitre link : CVE-2006-4662

CVE.ORG link : CVE-2006-4662

JSON object : View

Products Affected

mirabilis

  • icq
CWE
NVD-CWE-Other

NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024