Unrated severityNVD Advisory· Published May 27, 2003· Updated Apr 16, 2026
CVE-2003-0237
CVE-2003-0237
Description
The "ICQ Features on Demand" functionality for Mirabilis ICQ Pro 2003a does not properly verify the authenticity of software upgrades, which allows remote attackers to install arbitrary software via a spoofing attack.
Affected products
13cpe:2.3:a:mirabilis:icq:99a_2.15build1701:*:*:*:*:*:*:*+ 12 more
- cpe:2.3:a:mirabilis:icq:99a_2.15build1701:*:*:*:*:*:*:*
- cpe:2.3:a:mirabilis:icq:99a_2.21build1800:*:*:*:*:*:*:*
- cpe:2.3:a:mirabilis:icq:2000.0a:*:*:*:*:*:*:*
- cpe:2.3:a:mirabilis:icq:2000.0b_build3278:*:*:*:*:*:*:*
- cpe:2.3:a:mirabilis:icq:2001a:*:*:*:*:*:*:*
- cpe:2.3:a:mirabilis:icq:2001b_build3636:*:*:*:*:*:*:*
- cpe:2.3:a:mirabilis:icq:2001b_build3638:*:*:*:*:*:*:*
- cpe:2.3:a:mirabilis:icq:2001b_build3659:*:*:*:*:*:*:*
- cpe:2.3:a:mirabilis:icq:2002a_build3722:*:*:*:*:*:*:*
- cpe:2.3:a:mirabilis:icq:2002a_build3727:*:*:*:*:*:*:*
- cpe:2.3:a:mirabilis:icq:2003a_build3777:*:*:*:*:*:*:*
- cpe:2.3:a:mirabilis:icq:2003a_build3799:*:*:*:*:*:*:*
- cpe:2.3:a:mirabilis:icq:2003a_build3800:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5- www.securityfocus.com/bid/7464nvdPatchVendor Advisory
- www.coresecurity.com/common/showdoc.phpnvdVendor Advisory
- archives.neohapsis.com/archives/vulnwatch/2003-q2/0051.htmlnvd
- marc.infonvd
- exchange.xforce.ibmcloud.com/vulnerabilities/11944nvd
News mentions
0No linked articles in our index yet.