CVSS: 5.1EPSS: 0%CPEs: 2EXPL: 0CVE-2005-3433
https://notcve.org/view.php?id=CVE-2005-3433
Buffer overflow in Mirabilis ICQ 2003a allows user-assisted attackers to execute arbitrary code by convincing a user to enter long strings into the First Name and Last Name fields. • http://marc.info/?l=bugtraq&m=113063323109149&w=2 •
CVSS: 4.3EPSS: 0%CPEs: 3EXPL: 1CVE-2003-0769 – ICQ 2003 - Webfront Guestbook Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2003-0769
Cross-site scripting (XSS) vulnerability in the ICQ Web Front guestbook (guestbook.html) allows remote attackers to insert arbitrary web script and HTML via the message field. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en libro de invitados de ICQ Web Front (guestbook.html) permite a atacantes remotos insertar script web arbitrario y HTML mediante el campo de mensaje. • https://www.exploit-db.com/exploits/23120 https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2003-0769 •
CVSS: 7.5EPSS: 0%CPEs: 13EXPL: 0CVE-2003-0235
https://notcve.org/view.php?id=CVE-2003-0235
Format string vulnerability in POP3 client for Mirabilis ICQ Pro 2003a allows remote malicious servers to execute arbitrary code via format strings in the response to a UIDL command. Vulnerabilidad en formateado de cadenas en cliente POP3 para Mirabilis ICQ Pro 2003a permite que servidores remotos maliciosos ejecuten código arbitrario mediante cadenas formateadas en la respuesta a un comando UIDL. • http://archives.neohapsis.com/archives/vulnwatch/2003-q2/0051.html http://marc.info/?l=bugtraq&m=105216842131995&w=2 http://www.coresecurity.com/common/showdoc.php?idx=315&idxseccion=10 http://www.securityfocus.com/bid/7461 https://exchange.xforce.ibmcloud.com/vulnerabilities/11938 •
CVSS: 7.5EPSS: 1%CPEs: 13EXPL: 0CVE-2003-0237
https://notcve.org/view.php?id=CVE-2003-0237
The "ICQ Features on Demand" functionality for Mirabilis ICQ Pro 2003a does not properly verify the authenticity of software upgrades, which allows remote attackers to install arbitrary software via a spoofing attack. La funcionalidad "ICQ Features on Demand" en Mirabilis ICQ Pro 2003a no verifica adecuadamente la autenticidad de las actualizaciones software, lo que permitiría a atacantes remotos instalar software arbitrario. • http://archives.neohapsis.com/archives/vulnwatch/2003-q2/0051.html http://marc.info/?l=bugtraq&m=105216842131995&w=2 http://www.coresecurity.com/common/showdoc.php?idx=315&idxseccion=10 http://www.securityfocus.com/bid/7464 https://exchange.xforce.ibmcloud.com/vulnerabilities/11944 •
CVSS: 7.5EPSS: 10%CPEs: 13EXPL: 0CVE-2003-0236
https://notcve.org/view.php?id=CVE-2003-0236
Integer signedness errors in the POP3 client for Mirabilis ICQ Pro 2003a allow remote attackers to execute arbitrary code via the (1) Subject or (2) Date headers. Error en las signaturas de enteros en cliente POP3 para Mirabilis ICQ Pro 2003a permite que atacantes remotos ejecuten código arbitrario mediante los encabezamientos "Subject" o "Date". • http://archives.neohapsis.com/archives/vulnwatch/2003-q2/0051.html http://marc.info/?l=bugtraq&m=105216842131995&w=2 http://www.coresecurity.com/common/showdoc.php?idx=315&idxseccion=10 http://www.securityfocus.com/bid/7462 http://www.securityfocus.com/bid/7463 https://exchange.xforce.ibmcloud.com/vulnerabilities/11939 •