← Back

CVE-2006-0766

nvd nist
Published: Feb 18, 2006Modified: Apr 16, 2026

JSON object

Loading...
5.1
Vector
AV:N/AC:H/Au:N/C:P/I:P/A:P
Exploitability: 4.9 / Impact: 6.4
Source: NVD

Description

ICQ Inc. (formerly Mirabilis) ICQ 2003a, 2003b, Lite 4.0, Lite 4.1, and possibly other Windows versions allows user-assisted remote attackers to hide malicious file extensions and bypass Windows security warnings via a filename that ends in an assumed-safe extension such as JPG, and possibly containing other modified properties such as company name, icon, and description, which could trick a user into executing arbitrary programs.

Affected (4)

Products: Mirabilis: Icq, Icq Lite
Mirabilis
2 products
Icq
Icq Lite
Configuration A
4 vulnerable
Vulnerable SoftwareAffected Versions
Mirabilis
Icq
Version 2003a
Icq
Version 2003b
Mirabilis
Icq Lite
Version 4.0
Icq Lite
Version 4.1

References (4)

Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.