GUI display truncation vulnerability in ICQ Inc. (formerly Mirabilis) ICQ 2003a, 2003b, Lite 4.0, Lite 4.1, and possibly other Windows versions allows user-assisted remote attackers to hide malicious file extensions, bypass Windows security warnings via a filename that is all uppercase and of a specific length, which truncates the malicious extension from the display and could trick a user into executing arbitrary programs.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2006-02-18T02:00:00
Updated: 2018-10-19T14:57:01
Reserved: 2006-02-18T00:00:00
Link: CVE-2006-0765
JSON object: View
NVD Information
Status : Modified
Published: 2006-02-18T02:02:00.000
Modified: 2018-10-19T15:46:26.227
Link: CVE-2006-0765
JSON object: View
Redhat Information
No data.
CWE