CVSS: 9.8EPSS: 4%CPEs: 7EXPL: 1CVE-2007-0160
https://notcve.org/view.php?id=CVE-2007-0160
10 Jan 2007 — Stack-based buffer overflow in the LiveJournal support (hooks/ljhook.cc) in CenterICQ 4.9.11 through 4.21.0, when using unofficial LiveJournal servers, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by adding the victim as a friend and using long (1) username and (2) real name strings. Un desbordamiento de búfer en la región stack de la memoria en el soporte LiveJournal (hooks/ljhook.cc) en CenterICQ versión 4.9.11 hasta versión 4.21.0, cuando se utilizan se... • http://osvdb.org/33408 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 14%CPEs: 1EXPL: 1CVE-2005-3694 – CenterICQ 4.20/4.5 - Packet Handling Remote Denial of Service
https://notcve.org/view.php?id=CVE-2005-3694
20 Nov 2005 — centericq 4.20.0-r3 with "Enable peer-to-peer communications" set allows remote attackers to cause a denial of service (segmentation fault and crash) via short zero-length packets, and possibly packets of length 1 or 2, as demonstrated using Nessus. • https://www.exploit-db.com/exploits/26666 •
CVSS: 9.8EPSS: 5%CPEs: 20EXPL: 0CVE-2005-1852
https://notcve.org/view.php?id=CVE-2005-1852
26 Jul 2005 — Multiple integer overflows in libgadu, as used in Kopete in KDE 3.2.3 to 3.4.1, ekg before 1.6rc3, GNU Gadu, CenterICQ, Kadu, and other packages, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an incoming message. Múltiples desbordamientos de búfer en libgadu, usado en Kopete en KDE 3.2.3 hasta la 3.4.1, ekg anteriores a 1.6rc3, GNU Gadu, CenterICQ, Kadu, y otros paquetes, permite que atacantes remotos causen una denegación de servicio (caída) y posiblem... • http://lwn.net/Articles/144724 • CWE-189: Numeric Errors •
CVSS: 5.5EPSS: 0%CPEs: 69EXPL: 0CVE-2005-1914
https://notcve.org/view.php?id=CVE-2005-1914
17 Jul 2005 — CenterICQ 4.20.0 and earlier creates temporary files with predictable file names, which allows local users to overwrite arbitrary files via a symlink attack on the gg.token.PID temporary file. CenterICQ 4.20.0 y anteriores crea ficheros temporales con nombres de ficheros predecibles, lo que permite que usuarios locales sobreescriban ficheros arbitrarios mediante un ataque de enlaces simbólicos en el fichero temporal "gg.token.PID". • http://www.debian.org/security/2005/dsa-754 •