mICQ "0xFE" separator denial of service (Micq0xfeDos)

Vuln ID: 10872
Risk Level: Medium risk vulnerability  Medium Micq0xfeDos
Platforms: Debian Debian Linux: 2.2, RedHat Linux: 7, RedHat Linux: 7.1, RedHat Linux: 7.2, RedHat Linux: 7.3, Debian Debian Linux: 3.0, Matthew D. Smith and Rüdiger Kuhlmann mICQ: 0.4.9 and prior, RedHat Enterprise Linux: 2.1 AS, RedHat Enterprise Linux: 2.1 ES, RedHat Enterprise Linux: 2.1 WS, RedHat Linux Advanced Workstation: 2.1 Itanium
Description:

mICQ (Matt's ICQ Clone) is vulnerable to a denial of service attack. A remote attacker could send a specially-crafted ICQ message without the required "0xFE" separator to a vulnerable mICQ client to cause the client to crash.
Remedy:

For Debian GNU/Linux:
Upgrade to the latest micq package, as listed below. Refer to DSA-211-1 for more information. See References.

Debian GNU/Linux 2.2 (potato): 0.4.3-4.1 or later
Debian GNU/Linux 3.0 (woody): 0.4.9-0woody3 or later

For Red Hat Linux:
Upgrade to the latest micq package, as listed below. Refer to RHSA-2003:118-04 for more information. See References.

Red Hat 7.2: 0.4.10.2-1 or later
Red Hat 7.3: 0.4.10.2-1 or later

For other distributions:
Contact your vendor for upgrade or patch information.
Additional Information: Service Release 3.16
References:

DSA-211-1
micq -- denial of service
http://www.debian.org/security/2002/dsa-211

mICQ Web site
mICQ - a very compatible ICQ Client
http://micq.ukeer.de/

RHSA-2003:118-04
Updated mICQ packages fix vulnerability
http://rhn.redhat.com/errata/RHSA-2003-118.html

ISS X-Force
mICQ "0xFE" separator denial of service
http://www.iss.net/security_center/static/10872.php

CVE CVE-2002-1362
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1362
X-Force Logo
Know Your Risks		 Mitre.org CVE Logo
Common Vulnerabilties & Exposures