Unrated severityNVD Advisory· Published May 11, 2006· Updated Apr 16, 2026
CVE-2006-2303
CVE-2006-2303
Description
Cross-Application Scripting (XAS) vulnerability in ICQ Client 5.04 build 2321 and earlier allows remote attackers to inject arbitrary web script from one application into another via a banner, which is processed in the My Computer zone using the Internet Explorer COM object.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
8- lists.grok.org.uk/pipermail/full-disclosure/2006-May/045916.htmlnvd
- secunia.com/advisories/20010nvd
- securityreason.com/securityalert/868nvd
- securitytracker.com/idnvd
- www.securityfocus.com/archive/1/433360/100/0/threadednvd
- www.securityfocus.com/bid/17913nvd
- www.vupen.com/english/advisories/2006/1765nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/26386nvd
News mentions
0No linked articles in our index yet.