AOL Time Warner Affected

Notified:  January 07, 2002 Updated: January 17, 2002

Status

Affected

Vendor Statement

See http://web.icq.com/help/quickhelp/1,,117,00.html

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

There is currently no patch available for the ICQ plug-in for 2001B or versions of the ICQ client prior to 2001B. All users should upgrade to version 2001B Beta v5.18 Build #3659, who's installer will delete the vulnerable plug-in. In addition access to the vulnerable plug-in will be disabled for users with versions of 2001B prior to Beta v5.18 Build #3659 who login to the server.