← back
CVE-2003-0237

CVE-2003-0237

EPSS 1.6%
The "ICQ Features on Demand" functionality for Mirabilis ICQ Pro 2003a does not properly verify the authenticity of software upgrades, which allows remote attackers to install arbitrary software via a spoofing attack.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://archives.neohapsis.com/archives/vulnwatch/2003-q2/0051.htmlhttp://marc.info/?l=bugtraq&m=105216842131995&w=2https://exchange.xforce.ibmcloud.com/vulnerabilities/11944http://www.coresecurity.com/common/showdoc.php?idx=315&idxseccion=10http://www.securityfocus.com/bid/7464