Vulnerabilities > CVE-1999-1289 - Unspecified vulnerability in Mirabilis ICQ 98Beta

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

mirabilis

NVD

Published: 1998-11-11

Updated: 2017-12-19

Summary

ICQ 98 beta on Windows NT leaks the internal IP address of a client in the TCP data segment of an ICQ packet instead of the public address (e.g. through NAT), which provides remote attackers with potentially sensitive information about the client or the internal network configuration.

Vulnerable Configurations

Part	Description	Count
Application	Mirabilis Mirabilis ICQ 98_Beta	1

References

http://www.securityfocus.com/archive/1/11233
https://exchange.xforce.ibmcloud.com/vulnerabilities/1398