Unrated severityNVD Advisory· Published Nov 7, 2006· Updated Apr 23, 2026

CVE-2006-5650

Description

The ICQPhone.SipxPhoneManager ActiveX control in America Online ICQ 5.1 allows remote attackers to download and execute arbitrary code via the DownloadAgent function, as demonstrated using an ICQ avatar.

Affected products

AOL/Icq
cpe:2.3:a:aol:icq:5.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/22670nvdVendor Advisory
www.zerodayinitiative.com/advisories/ZDI-06-037.htmlnvdVendor Advisory
securityreason.com/securityalert/1830nvd
securitytracker.com/idnvd
www.securityfocus.com/archive/1/450726/100/0/threadednvd
www.securityfocus.com/bid/20930nvd
www.vupen.com/english/advisories/2006/4362nvd
exchange.xforce.ibmcloud.com/vulnerabilities/30059nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.067
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000