Vulnerabilities (CVE)

Filtered by vendor Icq Subscribe
Total 8 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2011-0487 1 Icq 1 Icq 2024-11-21 9.3 HIGH N/A
ICQ 7 does not verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a crafted file that is fetched through an automatic-update mechanism.
CVE-2009-1915 1 Icq 1 Icq 2024-11-21 4.3 MEDIUM N/A
Stack-based buffer overflow in the URL Search Hook (ICQToolBar.dll) in ICQ 6.5 allows remote attackers to cause a denial of service (persistent crash) and possibly execute arbitrary code via an Internet shortcut .URL file containing a long URL parameter, which triggers a crash when browsing a folder that contains this file.
CVE-2008-7136 1 Icq 1 Icq Toolbar 2024-11-21 4.3 MEDIUM N/A
toolbaru.dll in ICQ Toolbar (ICQToolbar) 2.3 allows remote attackers to cause a denial of service (toolbar crash) via a long argument to the (1) RequestURL, (2) GetPropertyById, or (3) SetPropertyById method, different vectors than CVE-2008-7135.
CVE-2008-7135 1 Icq 1 Icq Toolbar 2024-11-21 4.3 MEDIUM N/A
toolbaru.dll in ICQ Toolbar (ICQToolbar) 2.3 allows remote attackers to cause a denial of service (toolbar crash) via a long argument to the IsChecked method, a different vector than CVE-2008-7136.
CVE-2008-1920 1 Icq 1 Mirabilis Icq 2024-11-21 7.5 HIGH N/A
Heap-based buffer overflow in the boxelyRenderer module in the Personal Status Manager feature in ICQ 6.0 build 6043 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted personal status message.
CVE-2008-1120 1 Icq 1 Mirabilis Icq 2024-11-21 9.3 HIGH N/A
Format string vulnerability in the embedded Internet Explorer component for Mirabilis ICQ 6 build 6043 allows remote servers to execute arbitrary code or cause a denial of service (crash) via unspecified vectors related to HTML code generation.
CVE-2000-0552 1 Icq 1 Icq 2024-11-20 2.1 LOW 5.5 MEDIUM
ICQwebmail client for ICQ 2000A creates a world readable temporary file during login and does not delete it, which allows local users to obtain sensitive information.
CVE-1999-1342 1 Icq 1 Activelist Server 2024-11-20 5.0 MEDIUM N/A
ICQ ActiveList Server allows remote attackers to cause a denial of service (crash) via malformed packets to the server's UDP port.