Vulnerabilities > ICQ > ICQ
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2011-01-18 | CVE-2011-0487 | Code Injection vulnerability in ICQ 7 ICQ 7 does not verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a crafted file that is fetched through an automatic-update mechanism. | 9.3 |
2009-06-04 | CVE-2009-1915 | Buffer Errors vulnerability in ICQ 6.5 Stack-based buffer overflow in the URL Search Hook (ICQToolBar.dll) in ICQ 6.5 allows remote attackers to cause a denial of service (persistent crash) and possibly execute arbitrary code via an Internet shortcut .URL file containing a long URL parameter, which triggers a crash when browsing a folder that contains this file. | 4.3 |
2000-06-06 | CVE-2000-0552 | Incomplete Cleanup vulnerability in ICQ 2000A ICQwebmail client for ICQ 2000A creates a world readable temporary file during login and does not delete it, which allows local users to obtain sensitive information. | 5.5 |