EXPLOITS

ICQ 6 - 'Personal Status Manager' Remote Buffer Overflow (PoC)

Author: Leon Juranic
type: dos
platform: windows
port: 
date_added: 2008-04-16  
date_updated: 2014-02-14  
verified: 1  
codes: CVE-2008-1920;OSVDB-44544  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 31656.txt  

source: https://www.securityfocus.com/bid/28803/info

ICQ is prone to a remote buffer-overflow vulnerability because the application fails to perform boundary checks before copying user-supplied data into sensitive process buffers.

A remote attacker may execute arbitrary code in the context of the affected application. Failed exploit attempts will result in a denial of service.

This issue affects ICQ 6 build 6043; other versions may also be vulnerable.

------
|<a href="AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"><img
src="AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" border="0" /></a>|
------