ICQ6 dangerous vulnerability

Simply sending a specially prepared text message (in the simplest case “% 020000000s”) to a user with ICQ 6.x installed results in an error when generating HTML code intended for displaying text in an integrated IE component. This error can lead to the execution of an arbitrary code on a remote system, so the best that ICQ users can do now is to immediately change a client, or at least to prohibit receiving messages from people not from the contact list (which does not help much in case of an epidemic).