CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2001-1305

ICQ 2001a Alpha and earlier allows remote attackers to automatically add arbitrary UINs to an ICQ user's contact list via a URL to a web page with a Content-Type of application/x-icq, which is processed by Internet Explorer.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 61.6%

CVSS Severity

CVSS v2 Score 5.0

References

http://marc.info/?l=bugtraq&m=99851887024728&w=2
http://www.iss.net/security_center/static/7028.php
http://www.securityfocus.com/bid/3226
http://marc.info/?l=bugtraq&m=99851887024728&w=2
http://www.iss.net/security_center/static/7028.php
http://www.securityfocus.com/bid/3226

Products affected by CVE-2001-1305

Mirabilis » Icq » Version: 2000.0a

cpe:2.3:a:mirabilis:icq:2000.0a
Mirabilis » Icq » Version: 2000.0b_build3278

cpe:2.3:a:mirabilis:icq:2000.0b_build3278
Mirabilis » Icq » Version: 2001a

cpe:2.3:a:mirabilis:icq:2001a

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2001-1305

Products

Pricing

Contact Us