CVE-2001-1305 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2001-1305

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

ICQ 2001a Alpha and earlier allows remote attackers to automatically add arbitrary UINs to an ICQ users contact list via a URL to a web page with a Content-Type of application/x-icq, which is processed by Internet Explorer.

Affected Software

Name	Vendor	Start Version	End Version
Icq	Mirabilis	2000.0a (including)	2000.0a (including)
Icq	Mirabilis	2000.0b_build3278 (including)	2000.0b_build3278 (including)
Icq	Mirabilis	2001a (including)	2001a (including)

References

http://marc.info/?l=bugtraq\u0026m=99851887024728\u0026w=2
http://www.iss.net/security_center/static/7028.php
http://www.securityfocus.com/bid/3226
http://marc.info/?l=bugtraq\u0026m=99851887024728\u0026w=2
http://www.iss.net/security_center/static/7028.php
http://www.securityfocus.com/bid/3226