VYPR
← All advisories
Unrated severityNVD Advisory· Published May 27, 2003· Updated Apr 16, 2026

CVE-2003-0235

CVE-2003-0235

Description

Format string vulnerability in POP3 client for Mirabilis ICQ Pro 2003a allows remote malicious servers to execute arbitrary code via format strings in the response to a UIDL command.

Affected products

13
  • Mirabilis/Icq13 versions
    cpe:2.3:a:mirabilis:icq:2000.0a:*:*:*:*:*:*:*+ 12 more
    • cpe:2.3:a:mirabilis:icq:2000.0a:*:*:*:*:*:*:*
    • cpe:2.3:a:mirabilis:icq:2000.0b_build3278:*:*:*:*:*:*:*
    • cpe:2.3:a:mirabilis:icq:2001a:*:*:*:*:*:*:*
    • cpe:2.3:a:mirabilis:icq:2001b_build3636:*:*:*:*:*:*:*
    • cpe:2.3:a:mirabilis:icq:2001b_build3638:*:*:*:*:*:*:*
    • cpe:2.3:a:mirabilis:icq:2001b_build3659:*:*:*:*:*:*:*
    • cpe:2.3:a:mirabilis:icq:2002a_build3722:*:*:*:*:*:*:*
    • cpe:2.3:a:mirabilis:icq:2002a_build3727:*:*:*:*:*:*:*
    • cpe:2.3:a:mirabilis:icq:2003a_build3777:*:*:*:*:*:*:*
    • cpe:2.3:a:mirabilis:icq:2003a_build3799:*:*:*:*:*:*:*
    • cpe:2.3:a:mirabilis:icq:2003a_build3800:*:*:*:*:*:*:*
    • cpe:2.3:a:mirabilis:icq:99a_2.15build1701:*:*:*:*:*:*:*
    • cpe:2.3:a:mirabilis:icq:99a_2.21build1800:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

5

News mentions

0

No linked articles in our index yet.