MidnightBSD

Advisories for mirabilis

CVE-1999-0474 MEDIUM

The ICQ Webserver allows remote attackers to use .. to access arbitrary files outside of the user's personal directory.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mirabilis icq 99a_2.13build1700
CVE-1999-1289 HIGH

ICQ 98 beta on Windows NT leaks the internal IP address of a client in the TCP data segment of an ICQ packet instead of the public address (e.g. through NAT), which provides remote attackers with potentially sensitive information about the client or the internal network configuration.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mirabilis icq 98_beta
CVE-1999-1418 MEDIUM

ICQ99 ICQ web server build 1701 with "Active Homepage" enabled generates allows remote attackers to determine the existence of files on the server by comparing server responses when a file exists ("404 Forbidden") versus when a file does not exist ("404 not found").

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mirabilis icq_web_front *
CVE-1999-1440 MEDIUM

Win32 ICQ 98a 1.30, and possibly other versions, does not display the entire portion of long filenames, which could allow attackers to send an executable file with a long name that contains so many spaces that the .exe extension is not displayed, which could make the user believe that the file is safe to open from the client.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mirabilis icq_98a *
CVE-2000-0046 HIGH

Buffer overflow in ICQ 99b 1.1.1.1 client allows remote attackers to execute commands via a malformed URL within an ICQ message.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mirabilis icq 0.99b_1.1.1.1
CVE-2000-0564 MEDIUM

The guestbook CGI program in ICQ Web Front service for ICQ 2000a, 99b, and others allows remote attackers to cause a denial of service via a URL with a long name parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mirabilis icq 99a_2.21build1800
mirabilis icq 0.99b_v.3.19
mirabilis icq 98.0a
mirabilis icq 99a_2.15build1701
mirabilis icq 0.99b_1.1.1.1
mirabilis icq 2000.0a
CVE-2000-1078 MEDIUM

ICQ Web Front HTTPd allows remote attackers to cause a denial of service by requesting a URL that contains a "?" character.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mirabilis icq_web_front windows_9x
CVE-2001-0367 MEDIUM

Mirabilis ICQ WebFront Plug-in ICQ2000b Build 3278 allows a remote attacker to create a denial of service via HTTP URL requests containing a large number of % characters.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mirabilis icq 2000.0b_build3278
CVE-2001-1305 MEDIUM

ICQ 2001a Alpha and earlier allows remote attackers to automatically add arbitrary UINs to an ICQ user's contact list via a URL to a web page with a Content-Type of application/x-icq, which is processed by Internet Explorer.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mirabilis icq 2000.0b_build3278
mirabilis icq 2001a
mirabilis icq 2000.0a
CVE-2002-0028 HIGH

Buffer overflow in ICQ before 2001B Beta v5.18 Build #3659 allows remote attackers to execute arbitrary code via a Voice Video & Games request.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mirabilis icq 2000.0b_build3278
mirabilis icq 2001b_build3636
mirabilis icq 2001a
mirabilis icq 2001b_build3638
mirabilis icq 2000.0a
CVE-2002-0254 MEDIUM

ICQ 2001b Build 3659 allows remote attackers to cause a denial of service (crash) via a malformed picture that contains large height and width values, which causes the crash when viewed in Userdetails.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mirabilis icq 2001b_build3659
CVE-2002-1743 MEDIUM

AOL ICQ 2002a Build 3722 allows remote attackers to cause a denial of service (crash) via a malformed .hpf file.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mirabilis icq 2002a_build3722
CVE-2002-1773 HIGH

Buffer overflow in ICQ 2.6x for MacOS X 10.0 through 10.1.2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long request.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mirabilis icq_for_macos_x 2.6_x_beta
CVE-2002-2075 MEDIUM

ICQ 2001a and 2002b allows remote attackers to cause a denial of service (memory consumption and hang) via a contact message with a large contacts number.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mirabilis icq 2002b
mirabilis icq 2001a
CVE-2002-2329 HIGH

ICQ client 2001b, 2002a and 2002b allows remote attackers to cause a denial of service (CPU consumption or crash) via a message with a large number of emoticons.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
mirabilis icq 2001b
mirabilis icq 2002b
mirabilis icq 2002a
CVE-2003-0235 HIGH

Format string vulnerability in POP3 client for Mirabilis ICQ Pro 2003a allows remote malicious servers to execute arbitrary code via format strings in the response to a UIDL command.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mirabilis icq 2003a_build3800
mirabilis icq 2003a_build3777
mirabilis icq 2001a
mirabilis icq 2001b_build3638
mirabilis icq 2003a_build3799
mirabilis icq 2002a_build3727
mirabilis icq 2002a_build3722
mirabilis icq 99a_2.21build1800
mirabilis icq 2000.0b_build3278
mirabilis icq 99a_2.15build1701
mirabilis icq 2001b_build3636
mirabilis icq 2001b_build3659
mirabilis icq 2000.0a
CVE-2003-0236 HIGH

Integer signedness errors in the POP3 client for Mirabilis ICQ Pro 2003a allow remote attackers to execute arbitrary code via the (1) Subject or (2) Date headers.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mirabilis icq 2003a_build3800
mirabilis icq 2003a_build3777
mirabilis icq 2001a
mirabilis icq 2001b_build3638
mirabilis icq 2003a_build3799
mirabilis icq 2002a_build3727
mirabilis icq 2002a_build3722
mirabilis icq 99a_2.21build1800
mirabilis icq 2000.0b_build3278
mirabilis icq 99a_2.15build1701
mirabilis icq 2001b_build3636
mirabilis icq 2001b_build3659
mirabilis icq 2000.0a
CVE-2003-0237 HIGH

The "ICQ Features on Demand" functionality for Mirabilis ICQ Pro 2003a does not properly verify the authenticity of software upgrades, which allows remote attackers to install arbitrary software via a spoofing attack.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mirabilis icq 2003a_build3800
mirabilis icq 2003a_build3777
mirabilis icq 2001a
mirabilis icq 2001b_build3638
mirabilis icq 2003a_build3799
mirabilis icq 2002a_build3727
mirabilis icq 2002a_build3722
mirabilis icq 99a_2.21build1800
mirabilis icq 2000.0b_build3278
mirabilis icq 99a_2.15build1701
mirabilis icq 2001b_build3636
mirabilis icq 2001b_build3659
mirabilis icq 2000.0a
CVE-2003-0238 MEDIUM

The Message Session window in Mirabilis ICQ Pro 2003a allows remote attackers to cause a denial of service (CPU consumption) by spoofing the address of an ADS server and sending HTML with a -1 width in a table tag.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mirabilis icq 2003a_build3800
mirabilis icq 2003a_build3777
mirabilis icq 2001a
mirabilis icq 2001b_build3638
mirabilis icq 2003a_build3799
mirabilis icq 2002a_build3727
mirabilis icq 2002a_build3722
mirabilis icq 99a_2.21build1800
mirabilis icq 2000.0b_build3278
mirabilis icq 99a_2.15build1701
mirabilis icq 2001b_build3636
mirabilis icq 2001b_build3659
mirabilis icq 2000.0a
CVE-2003-0239 MEDIUM

icqateimg32.dll parsing/rendering library in Mirabilis ICQ Pro 2003a allows remote attackers to cause a denial of service via malformed GIF89a headers that do not contain a GCT (Global Color Table) or an LCT (Local Color Table) after an Image Descriptor.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mirabilis icq 2003a_build3800
mirabilis icq 2003a_build3777
mirabilis icq 2001a
mirabilis icq 2001b_build3638
mirabilis icq 2003a_build3799
mirabilis icq 2002a_build3727
mirabilis icq 2002a_build3722
mirabilis icq 99a_2.21build1800
mirabilis icq 2000.0b_build3278
mirabilis icq 99a_2.15build1701
mirabilis icq 2001b_build3636
mirabilis icq 2001b_build3659
mirabilis icq 2000.0a
CVE-2003-0769 MEDIUM

Cross-site scripting (XSS) vulnerability in the ICQ Web Front guestbook (guestbook.html) allows remote attackers to insert arbitrary web script and HTML via the message field.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mirabilis icq 2003a_build3800
mirabilis icq 2003a_build3777
mirabilis icq 2003a_build3799
CVE-2005-3433 MEDIUM

Buffer overflow in Mirabilis ICQ 2003a allows user-assisted attackers to execute arbitrary code by convincing a user to enter long strings into the First Name and Last Name fields.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mirabilis icq 2003a_build3800
mirabilis icq 2002a_build3728
CVE-2006-0765 MEDIUM

GUI display truncation vulnerability in ICQ Inc. (formerly Mirabilis) ICQ 2003a, 2003b, Lite 4.0, Lite 4.1, and possibly other Windows versions allows user-assisted remote attackers to hide malicious file extensions, bypass Windows security warnings via a filename that is all uppercase and of a specific length, which truncates the malicious extension from the display and could trick a user into executing arbitrary programs.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mirabilis icq 2003a
mirabilis icq_lite 4.0
mirabilis icq_lite 4.1
mirabilis icq 2003b
CVE-2006-0766 MEDIUM

ICQ Inc. (formerly Mirabilis) ICQ 2003a, 2003b, Lite 4.0, Lite 4.1, and possibly other Windows versions allows user-assisted remote attackers to hide malicious file extensions and bypass Windows security warnings via a filename that ends in an assumed-safe extension such as JPG, and possibly containing other modified properties such as company name, icon, and description, which could trick a user into executing arbitrary programs.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mirabilis icq 2003a
mirabilis icq_lite 4.0
mirabilis icq_lite 4.1
mirabilis icq 2003b
CVE-2006-2303 MEDIUM

Cross-Application Scripting (XAS) vulnerability in ICQ Client 5.04 build 2321 and earlier allows remote attackers to inject arbitrary web script from one application into another via a banner, which is processed in the My Computer zone using the Internet Explorer COM object.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mirabilis icq 5.04_build2321