← Back

Icq

icq

Vendor: Aol • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2007-1904
1Aol
2Icq
Instant Messenger
Apr 23, 2026
Apr 10, 2007
N/A· v4
N/A· v3
4.3 MEDIUM· v2
Directory traversal vulnerability in AOL Instant Messenger (AIM) 5.9 and earlier, and ICQ 5.1 and probably earlier, allows user-assisted remote attackers to write files to arbitrary locations via a .. (dot dot) in a file...Show more
Directory traversal vulnerability in AOL Instant Messenger (AIM) 5.9 and earlier, and ICQ 5.1 and probably earlier, allows user-assisted remote attackers to write files to arbitrary locations via a .. (dot dot) in a filename in a file transfer operation.Show less
CVE-2006-5650
1Aol
1Icq
Apr 23, 2026
Nov 7, 2006
N/A· v4
N/A· v3
7.5 HIGH· v2
The ICQPhone.SipxPhoneManager ActiveX control in America Online ICQ 5.1 allows remote attackers to download and execute arbitrary code via the DownloadAgent function, as demonstrated using an ICQ avatar.