CVE-2011-0487
18.01.2011, 18:03
ICQ 7 does not verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a crafted file that is fetched through an automatic-update mechanism.
Awaiting analysis
This vulnerability is currently awaiting analysis.
References