CVSS: 7.5EPSS: 1%CPEs: 13EXPL: 0CVE-2005-2102 – Gentoo Linux Security Advisory 200508-6
https://notcve.org/view.php?id=CVE-2005-2102
16 Aug 2005 — The AIM/ICQ module in Gaim before 1.5.0 allows remote attackers to cause a denial of service (application crash) via a filename that contains invalid UTF-8 characters. Brandon Perry discovered that Gaim is vulnerable to a heap-based buffer overflow when handling away messages (CVE-2005-2103). Furthermore, Daniel Atallah discovered a vulnerability in the handling of file transfers (CVE-2005-2102). Versions less than 1.5.0 are affected. • http://gaim.sourceforge.net/security/?id=21 •
CVSS: 9.8EPSS: 25%CPEs: 1EXPL: 1CVE-2005-2103 – Gaim AIM/ICQ Protocols - Multiple Vulnerabilities
https://notcve.org/view.php?id=CVE-2005-2103
16 Aug 2005 — Buffer overflow in the AIM and ICQ module in Gaim before 1.5.0 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an away message with a large number of AIM substitution strings, such as %t or %n. Brandon Perry discovered that Gaim is vulnerable to a heap-based buffer overflow when handling away messages (CVE-2005-2103). Furthermore, Daniel Atallah discovered a vulnerability in the handling of file transfers (CVE-2005-2102). Versions less than 1.... • https://www.exploit-db.com/exploits/26139 • CWE-131: Incorrect Calculation of Buffer Size •
CVSS: 7.5EPSS: 1%CPEs: 8EXPL: 0CVE-2005-2370 – Debian Linux Security Advisory 1318-1
https://notcve.org/view.php?id=CVE-2005-2370
26 Jul 2005 — Multiple "memory alignment errors" in libgadu, as used in ekg before 1.6rc2, Gaim before 1.5.0, and other packages, allows remote attackers to cause a denial of service (bus error) on certain architectures such as SPARC via an incoming message. Múltiples "errores de alineamiento de memoria" en libgadu, usado en ekg anterior a la 1.5rc2, Gaim anteriores a 1.5.0 y otros paquetes permite que atacantes remotos causen una denegación de servicio (error de bus) en ciertas arquitecturas, tales como SPACRC, mediante... • http://gaim.sourceforge.net/security/index.php?id=20 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 2%CPEs: 50EXPL: 0CVE-2005-1269 – Gentoo Linux Security Advisory 200506-11
https://notcve.org/view.php?id=CVE-2005-1269
14 Jun 2005 — Gaim before 1.3.1 allows remote attackers to cause a denial of service (application crash) via a Yahoo! message with non-ASCII characters in a file name. A remote Denial of Service vulnerability was discovered in Gaim. By initiating a file transfer with a file name containing certain international characters, a remote attacker could crash the Gaim client of an arbitrary Yahoo IM member. • http://gaim.sourceforge.net/security/?id=18 •
CVSS: 7.5EPSS: 2%CPEs: 1EXPL: 0CVE-2005-1934 – Gentoo Linux Security Advisory 200506-11
https://notcve.org/view.php?id=CVE-2005-1934
19 May 2005 — Gaim before 1.3.1 allows remote attackers to cause a denial of service (crash) via a malformed MSN message that leads to a memory allocation of a large size, possibly due to an integer signedness error. Jacopo Ottaviani discovered a vulnerability in the Yahoo! file transfer code when being offered files with names containing non-ASCII characters (CVE-2005-1269). Versions less than 1.3.1 are affected. • http://security.gentoo.org/glsa/glsa-200506-11.xml •
CVSS: 9.8EPSS: 16%CPEs: 48EXPL: 1CVE-2005-1261 – Gaim 1.2.1 - URL Handling Remote Stack Overflow
https://notcve.org/view.php?id=CVE-2005-1261
11 May 2005 — Stack-based buffer overflow in the URL parsing function in Gaim before 1.3.0 allows remote attackers to execute arbitrary code via an instant message (IM) with a large URL. Stu Tomlinson discovered that Gaim is vulnerable to a remote stack based buffer overflow when receiving messages in certain protocols, like Jabber and SILC, with a very long URL (CVE-2005-1261). Siebe Tolsma discovered that Gaim is also vulnerable to a remote Denial of Service attack when receiving a specially crafted MSN message (CVE-20... • https://www.exploit-db.com/exploits/999 •
CVSS: 7.5EPSS: 1%CPEs: 48EXPL: 0CVE-2005-1262 – Gentoo Linux Security Advisory 200505-9
https://notcve.org/view.php?id=CVE-2005-1262
11 May 2005 — Gaim 1.2.1 and earlier allows remote attackers to cause a denial of service (application crash) via a malformed MSN message. Stu Tomlinson discovered that Gaim is vulnerable to a remote stack based buffer overflow when receiving messages in certain protocols, like Jabber and SILC, with a very long URL (CVE-2005-1261). Siebe Tolsma discovered that Gaim is also vulnerable to a remote Denial of Service attack when receiving a specially crafted MSN message (CVE-2005-1262). Versions less than 1.3.0 are affected. • http://gaim.sourceforge.net/security/index.php?id=17 •