Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-1289

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-1999-1289
Last Modified 05 Sep 2008 04:19:10
Published 11 Nov 1998 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-1999-1289

Summary

ICQ 98 beta on Windows NT leaks the internal IP address of a client in the TCP data segment of an ICQ packet instead of the public address (e.g. through NAT), which provides remote attackers with potentially sensitive information about the client or the internal network configuration.

Vulnerable Systems

Application

  • Mirabilis Icq 98 Beta


References

XF - icq-ip-info(1398)

BUGTRAQ - 19981111 WARNING: Another ICQ IP address vulnerability


Last Updated: 27 May 2016 10:35:22