Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2011-0487 | 1 Icq | 1 Icq | 2024-11-21 | 9.3 HIGH | N/A |
ICQ 7 does not verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a crafted file that is fetched through an automatic-update mechanism. | |||||
CVE-2009-1915 | 1 Icq | 1 Icq | 2024-11-21 | 4.3 MEDIUM | N/A |
Stack-based buffer overflow in the URL Search Hook (ICQToolBar.dll) in ICQ 6.5 allows remote attackers to cause a denial of service (persistent crash) and possibly execute arbitrary code via an Internet shortcut .URL file containing a long URL parameter, which triggers a crash when browsing a folder that contains this file. | |||||
CVE-2000-0552 | 1 Icq | 1 Icq | 2024-11-20 | 2.1 LOW | 5.5 MEDIUM |
ICQwebmail client for ICQ 2000A creates a world readable temporary file during login and does not delete it, which allows local users to obtain sensitive information. |