VYPR

Icq

by AOL

CVEs (3)

  • CVE-2006-5650Nov 7, 2006
    risk 0.08cvss epss 0.66

    The ICQPhone.SipxPhoneManager ActiveX control in America Online ICQ 5.1 allows remote attackers to download and execute arbitrary code via the DownloadAgent function, as demonstrated using an ICQ avatar.

  • CVE-2007-1904Apr 10, 2007
    risk 0.00cvss epss 0.04

    Directory traversal vulnerability in AOL Instant Messenger (AIM) 5.9 and earlier, and ICQ 5.1 and probably earlier, allows user-assisted remote attackers to write files to arbitrary locations via a .. (dot dot) in a filename in a file transfer operation.

  • CVE-2002-1743Dec 31, 2002
    risk 0.00cvss epss 0.02

    AOL ICQ 2002a Build 3722 allows remote attackers to cause a denial of service (crash) via a malformed .hpf file.