CVE-1999-1289

Published: Nov 11, 1998Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

ICQ 98 beta on Windows NT leaks the internal IP address of a client in the TCP data segment of an ICQ packet instead of the public address (e.g. through NAT), which provides remote attackers with potentially sensitive information about the client or the internal network configuration.

Affected (1)

Products: Mirabilis: Icq

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Mirabilis Icq	Version 98_beta

References (4)

http://www.securityfocus.com/archive/1/11233

Source: cve@mitre.org

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/1398

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/11233

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/1398

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.