VYPR
Unrated severityNVD Advisory· Published Aug 17, 2001· Updated Jun 16, 2026

CVE-2001-1305

CVE-2001-1305

Description

ICQ 2001a Alpha and earlier allows remote attackers to automatically add arbitrary UINs to an ICQ user's contact list via a URL to a web page with a Content-Type of application/x-icq, which is processed by Internet Explorer.

Affected products

4
  • Mirabilis/Icq3 versions
    cpe:2.3:a:mirabilis:icq:2000.0a:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:mirabilis:icq:2000.0a:*:*:*:*:*:*:*
    • cpe:2.3:a:mirabilis:icq:2000.0b_build3278:*:*:*:*:*:*:*
    • cpe:2.3:a:mirabilis:icq:2001a:*:*:*:*:*:*:*
  • Icq/Icqllm-fuzzy
    Range: <= 2001a Alpha

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.