America Online ICQ ActiveX Control Remote Code Execution Vulnerability

The America Online ICQ ActiveX Control is prone to a remote code-execution vulnerability.

An attacker could exploit this issue simply by sending a message to a victim ICQ user. Successful exploits could allow the attacker to execute arbitrary code.

The ICQPhone.SipxPhoneManager ActiveX control with the following CLSID is affected:



Privacy Statement
Copyright 2010, SecurityFocus