What is the severity of CVE-2003-0237?

CVE-2003-0237 is considered a critical vulnerability due to its potential to allow remote attackers to install arbitrary software.

How do I fix CVE-2003-0237?

The best way to mitigate CVE-2003-0237 is to update to a newer, secured version of ICQ that does not have the vulnerability.

Which versions of ICQ are affected by CVE-2003-0237?

CVE-2003-0237 affects various versions of ICQ, including 2003a build 3777, 2003a build 3799, and earlier versions like 2001a and 2002a.

What is the impact of exploiting CVE-2003-0237?

Exploitation of CVE-2003-0237 can result in unauthorized software installation, leading to system compromise.

Is there a workaround for CVE-2003-0237?

There are no known effective workarounds for CVE-2003-0237 other than upgrading to a secure version of the software.

Vulnerability/
CVE-2003-0237

high

7.5

CWE

NVD-CWE-Other

7/5/2003

8/8/2024

CVE-2003-0237

First published: Wed May 07 2003(Updated: )

The "ICQ Features on Demand" functionality for Mirabilis ICQ Pro 2003a does not properly verify the authenticity of software upgrades, which allows remote attackers to install arbitrary software via a spoofing attack.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
CenterICQ	=99a_2.15build1701
CenterICQ	=99a_2.21build1800
CenterICQ	=2000.0a
CenterICQ	=2000.0b_build3278
CenterICQ	=2001a
CenterICQ	=2001b_build3636
CenterICQ	=2001b_build3638
CenterICQ	=2001b_build3659
CenterICQ	=2002a_build3722
CenterICQ	=2002a_build3727
CenterICQ	=2003a_build3777
CenterICQ	=2003a_build3799
CenterICQ	=2003a_build3800

Remedy

http://www.securityfocus.com/bid/7464

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2003-0237?
CVE-2003-0237 is considered a critical vulnerability due to its potential to allow remote attackers to install arbitrary software.
How do I fix CVE-2003-0237?
The best way to mitigate CVE-2003-0237 is to update to a newer, secured version of ICQ that does not have the vulnerability.
Which versions of ICQ are affected by CVE-2003-0237?
CVE-2003-0237 affects various versions of ICQ, including 2003a build 3777, 2003a build 3799, and earlier versions like 2001a and 2002a.
What is the impact of exploiting CVE-2003-0237?
Exploitation of CVE-2003-0237 can result in unauthorized software installation, leading to system compromise.
Is there a workaround for CVE-2003-0237?
There are no known effective workarounds for CVE-2003-0237 other than upgrading to a secure version of the software.

agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/references
agent/weakness
agent/last-modified-date
agent/remedy
agent/severity
agent/author
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-historical
vendor/mirabilis
canonical/centericq
version/centericq/99a_2.15build1701
version/centericq/99a_2.21build1800
version/centericq/2000.0a
version/centericq/2000.0b_build3278
version/centericq/2001a
version/centericq/2001b_build3636
version/centericq/2001b_build3638
version/centericq/2001b_build3659
version/centericq/2002a_build3722
version/centericq/2002a_build3727
version/centericq/2003a_build3777
version/centericq/2003a_build3799
version/centericq/2003a_build3800

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.