Filtered by vendor Mirabilis
Subscriptions
Total
27 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2000-1078 | 1 Mirabilis | 1 Icq Web Front | 2024-11-20 | N/A |
ICQ Web Front HTTPd allows remote attackers to cause a denial of service by requesting a URL that contains a "?" character. | ||||
CVE-2000-0564 | 1 Mirabilis | 1 Icq | 2024-11-20 | N/A |
The guestbook CGI program in ICQ Web Front service for ICQ 2000a, 99b, and others allows remote attackers to cause a denial of service via a URL with a long name parameter. | ||||
CVE-2000-0046 | 1 Mirabilis | 1 Icq | 2024-11-20 | N/A |
Buffer overflow in ICQ 99b 1.1.1.1 client allows remote attackers to execute commands via a malformed URL within an ICQ message. | ||||
CVE-1999-1440 | 1 Mirabilis | 1 Icq 98a | 2024-11-20 | N/A |
Win32 ICQ 98a 1.30, and possibly other versions, does not display the entire portion of long filenames, which could allow attackers to send an executable file with a long name that contains so many spaces that the .exe extension is not displayed, which could make the user believe that the file is safe to open from the client. | ||||
CVE-1999-1418 | 1 Mirabilis | 1 Icq Web Front | 2024-11-20 | N/A |
ICQ99 ICQ web server build 1701 with "Active Homepage" enabled generates allows remote attackers to determine the existence of files on the server by comparing server responses when a file exists ("404 Forbidden") versus when a file does not exist ("404 not found"). | ||||
CVE-1999-1289 | 1 Mirabilis | 1 Icq | 2024-11-20 | N/A |
ICQ 98 beta on Windows NT leaks the internal IP address of a client in the TCP data segment of an ICQ packet instead of the public address (e.g. through NAT), which provides remote attackers with potentially sensitive information about the client or the internal network configuration. | ||||
CVE-1999-0474 | 1 Mirabilis | 1 Icq | 2024-11-20 | N/A |
The ICQ Webserver allows remote attackers to use .. to access arbitrary files outside of the user's personal directory. |