America Online ICQ ActiveX Control Remote Code Execution Vulnerability

The America Online ICQ ActiveX Control is prone to a remote code-execution vulnerability.

An attacker could exploit this issue simply by sending a message to a victim ICQ user. Successful exploits could allow the attacker to execute arbitrary code.

The ICQPhone.SipxPhoneManager ActiveX control with the following CLSID is affected:

54BDE6EC-F42F-4500-AC46-905177444300


 

Privacy Statement
Copyright 2010, SecurityFocus