CVSS: 7.5EPSS: 18%CPEs: 48EXPL: 1CVE-2005-1261 – Gaim 1.2.1 - URL Handling Remote Stack Overflow
https://notcve.org/view.php?id=CVE-2005-1261
Stack-based buffer overflow in the URL parsing function in Gaim before 1.3.0 allows remote attackers to execute arbitrary code via an instant message (IM) with a large URL. • https://www.exploit-db.com/exploits/999 http://gaim.sourceforge.net/security/index.php?id=16 http://www.redhat.com/support/errata/RHSA-2005-429.html http://www.redhat.com/support/errata/RHSA-2005-432.html http://www.securityfocus.com/archive/1/426078/100/0/threaded http://www.securityfocus.com/bid/13590 http://www.vupen.com/english/advisories/2005/0519 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10725 https://access.redhat.com/s •
CVSS: 5.0EPSS: 0%CPEs: 36EXPL: 0CVE-2004-2589
https://notcve.org/view.php?id=CVE-2004-2589
Gaim before 0.82 allows remote servers to cause a denial of service (application crash) via a long HTTP Content-Length header, which causes Gaim to abort when attempting to allocate memory. • http://gaim.sourceforge.net/security/?id=6 http://secunia.com/advisories/12383 http://securitytracker.com/id?1011083 http://www.osvdb.org/9264 http://www.securityfocus.com/bid/11056 https://exchange.xforce.ibmcloud.com/vulnerabilities/17150 •
CVSS: 10.0EPSS: 8%CPEs: 42EXPL: 0CVE-2004-0891
https://notcve.org/view.php?id=CVE-2004-0891
Buffer overflow in the MSN protocol handler for gaim 0.79 to 1.0.1 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an "unexpected sequence of MSNSLP messages" that results in an unbounded copy operation that writes to the wrong buffer. • http://gaim.sourceforge.net/security/?id=9 http://www.gentoo.org/security/en/glsa/glsa-200410-23.xml http://www.redhat.com/support/errata/RHSA-2004-604.html https://bugzilla.fedora.us/show_bug.cgi?id=2188 https://exchange.xforce.ibmcloud.com/vulnerabilities/17786 https://exchange.xforce.ibmcloud.com/vulnerabilities/17787 https://exchange.xforce.ibmcloud.com/vulnerabilities/17790 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11790 https://www.ubuntu& •
CVSS: 7.5EPSS: 7%CPEs: 29EXPL: 0CVE-2004-0754
https://notcve.org/view.php?id=CVE-2004-0754
Integer overflow in Gaim before 0.82 allows remote attackers to cause a denial of service and possibly execute arbitrary code via the size variable in Groupware server messages. Desbordamiento de enteros en Gaim anteriores a 0.82 permite a atacantes remotos ejecutar código arbitrario mediante una la varible de tamaño en mensajes de servidor Groupware. • http://gaim.sourceforge.net/security/?id=2 http://secunia.com/advisories/12383 http://secunia.com/advisories/12480 http://secunia.com/advisories/13101 http://securitytracker.com/id?1011083 http://www.fedoranews.org/updates/FEDORA-2004-278.shtml http://www.fedoranews.org/updates/FEDORA-2004-279.shtml http://www.gentoo.org/security/en/glsa/glsa-200408-27.xml http://www.osvdb.org/9260 http://www.redhat.com/support/errata/RHSA-2004-400.html http://www.securityfocus.com •
CVSS: 7.5EPSS: 1%CPEs: 29EXPL: 0CVE-2004-0784
https://notcve.org/view.php?id=CVE-2004-0784
The smiley theme functionality in Gaim before 0.82 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of the tar file that is dragged to the smiley selector. La funcionalidad de temas de iconos gestuales (smileys) de Gaim anteriores a 0.82 permite a atacantes remotos ejecutar comandos de su elección mediante metacaractéres de shell en el nombre del fichero o del fichero tar que es arrastrado al selector del icono. • http://gaim.sourceforge.net/security/?id=1 http://www.fedoranews.org/updates/FEDORA-2004-278.shtml http://www.fedoranews.org/updates/FEDORA-2004-279.shtml http://www.gentoo.org/security/en/glsa/glsa-200408-27.xml http://www.redhat.com/support/errata/RHSA-2004-400.html https://exchange.xforce.ibmcloud.com/vulnerabilities/17144 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10008 •