Vulnerabilities > Mirabilis > ICQ > 2000.0b.build3278
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-09-09 | CVE-2006-4662 | Remote Heap Buffer Overflow vulnerability in ICQ MCRegEx__Search Heap-based buffer overflow in the MCRegEx__Search function in AOL ICQ Pro 2003b Build 3916 and earlier allows remote attackers to execute arbitrary code via an inconsistent length field of a Message in a 0x2711 Type-Length-Value (TLV) type. | 7.5 |
| 2003-05-27 | CVE-2003-0239 | Denial Of Service vulnerability in Mirabilis ICQ GIF Parsing icqateimg32.dll parsing/rendering library in Mirabilis ICQ Pro 2003a allows remote attackers to cause a denial of service via malformed GIF89a headers that do not contain a GCT (Global Color Table) or an LCT (Local Color Table) after an Image Descriptor. | 5.0 |
| 2003-05-27 | CVE-2003-0238 | Denial Of Service vulnerability in Mirabilis ICQ Message Session Window The Message Session window in Mirabilis ICQ Pro 2003a allows remote attackers to cause a denial of service (CPU consumption) by spoofing the address of an ADS server and sending HTML with a -1 width in a table tag. | 5.0 |
| 2003-05-27 | CVE-2003-0237 | Remote Command Execution vulnerability in Mirabilis ICQ Features On Demand The "ICQ Features on Demand" functionality for Mirabilis ICQ Pro 2003a does not properly verify the authenticity of software upgrades, which allows remote attackers to install arbitrary software via a spoofing attack. | 7.5 |
| 2003-05-27 | CVE-2003-0236 | Integer Overflow vulnerability in Mirabilis ICQ POP3 Client Subject Field Signed Integer signedness errors in the POP3 client for Mirabilis ICQ Pro 2003a allow remote attackers to execute arbitrary code via the (1) Subject or (2) Date headers. | 7.5 |
| 2003-05-27 | CVE-2003-0235 | Unspecified vulnerability in Mirabilis ICQ Format string vulnerability in POP3 client for Mirabilis ICQ Pro 2003a allows remote malicious servers to execute arbitrary code via format strings in the response to a UIDL command. | 7.5 |
| 2002-02-27 | CVE-2002-0028 | Remote Buffer Overflow vulnerability in Mirabilis ICQ Buffer overflow in ICQ before 2001B Beta v5.18 Build #3659 allows remote attackers to execute arbitrary code via a Voice Video & Games request. | 7.5 |
| 2001-08-17 | CVE-2001-1305 | Unspecified vulnerability in Mirabilis ICQ 2000.0A/2000.0Bbuild3278/2001A ICQ 2001a Alpha and earlier allows remote attackers to automatically add arbitrary UINs to an ICQ user's contact list via a URL to a web page with a Content-Type of application/x-icq, which is processed by Internet Explorer. | 5.0 |
| 2001-06-27 | CVE-2001-0367 | Unspecified vulnerability in Mirabilis ICQ 2000.0Bbuild3278 Mirabilis ICQ WebFront Plug-in ICQ2000b Build 3278 allows a remote attacker to create a denial of service via HTTP URL requests containing a large number of % characters. | 5.0 |