CVE-2000-0046

ICQ 99b 1.1.1.1 - Remote Code Execution via Malformed URL in ICQ Message

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0046. PoCs published by Drew Copley.

AI-analyzed exploit summary This exploit demonstrates a buffer overflow vulnerability in the Mirabilis ICQ client by sending a maliciously crafted URL. The oversized URL, when clicked, overwrites the EIP and causes the application to crash, proving the concept of arbitrary code execution.

Description

Buffer overflow in ICQ 99b 1.1.1.1 client allows remote attackers to execute commands via a malformed URL within an ICQ message.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Drew Copley · textremotewindows

https://www.exploit-db.com/exploits/19724

View Code ZIP pw:eip

This exploit demonstrates a buffer overflow vulnerability in the Mirabilis ICQ client by sending a maliciously crafted URL. The oversized URL, when clicked, overwrites the EIP and causes the application to crash, proving the concept of arbitrary code execution.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Mirabilis ICQ client (version not specified)

No auth needed

Prerequisites: Victim must click on the malicious URL sent via ICQ message

MITRE ATT&CK

T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/929

Scores

EPSS 0.0727

EPSS Percentile 93.6%

Details

Status published

Products (1)

mirabilis/icq 0.99b_1.1.1.1

Published Jan 10, 2000

Tracked Since Feb 18, 2026