CVE-2004-0007
published 2004-03-03CVE-2004-0007: Buffer overflow in the Extract Info Field Function for (1) MSN and (2) YMSG protocol handlers in Gaim 0.74 and earlier, and Ultramagnetic before 0.81, allows…
PriorityP432high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
7.18%
93.5th percentile
Buffer overflow in the Extract Info Field Function for (1) MSN and (2) YMSG protocol handlers in Gaim 0.74 and earlier, and Ultramagnetic before 0.81, allows remote attackers to cause a denial of service and possibly execute arbitrary code.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| rob_flynn | gaim | <= 0.74 | — |
| ultramagnetic | ultramagnetic | <= 0.81 | — |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
security flaw
vendor_redhat·2004-01-26·CVSS 7.5
CVE-2004-0007 [HIGH] security flaw
security flaw
Buffer overflow in the Extract Info Field Function for (1) MSN and (2) YMSG protocol handlers in Gaim 0.74 and earlier, and Ultramagnetic before 0.81, allows remote attackers to cause a denial of service and possibly execute arbitrary code.
GHSA
GHSA-364g-x2w9-9jh7: Buffer overflow in the Extract Info Field Function for (1) MSN and (2) YMSG protocol handlers in Gaim 0
ghsa_unreviewed·2022-04-29
CVE-2004-0007 [HIGH] GHSA-364g-x2w9-9jh7: Buffer overflow in the Extract Info Field Function for (1) MSN and (2) YMSG protocol handlers in Gaim 0
Buffer overflow in the Extract Info Field Function for (1) MSN and (2) YMSG protocol handlers in Gaim 0.74 and earlier, and Ultramagnetic before 0.81, allows remote attackers to cause a denial of service and possibly execute arbitrary code.
No detection rules found.
No public exploits indexed.
http://archives.neohapsis.com/archives/fulldisclosure/2004-01/0994.htmlhttp://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000813http://marc.info/?l=bugtraq&m=107513690306318&w=2http://marc.info/?l=bugtraq&m=107522432613022&w=2http://security.e-matters.de/advisories/012004.htmlhttp://security.gentoo.org/glsa/glsa-200401-04.xmlhttp://ultramagnetic.sourceforge.net/advisories/001.htmlhttp://www.debian.org/security/2004/dsa-434http://www.kb.cert.org/vuls/id/197142http://www.mandriva.com/security/advisories?name=MDKSA-2004:006http://www.osvdb.org/3733http://www.redhat.com/support/errata/RHSA-2004-032.htmlhttp://www.redhat.com/support/errata/RHSA-2004-033.htmlhttp://www.securityfocus.com/advisories/6281http://www.securityfocus.com/bid/9489http://www.securitytracker.com/id?1008850http://www.slackware.com/security/viewer.php?l=slackware-security&y=2004&m=slackware-security.361158https://exchange.xforce.ibmcloud.com/vulnerabilities/14946https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A819https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9906http://archives.neohapsis.com/archives/fulldisclosure/2004-01/0994.htmlhttp://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000813http://marc.info/?l=bugtraq&m=107513690306318&w=2http://marc.info/?l=bugtraq&m=107522432613022&w=2http://security.e-matters.de/advisories/012004.htmlhttp://security.gentoo.org/glsa/glsa-200401-04.xmlhttp://ultramagnetic.sourceforge.net/advisories/001.htmlhttp://www.debian.org/security/2004/dsa-434http://www.kb.cert.org/vuls/id/197142http://www.mandriva.com/security/advisories?name=MDKSA-2004:006http://www.osvdb.org/3733http://www.redhat.com/support/errata/RHSA-2004-032.htmlhttp://www.redhat.com/support/errata/RHSA-2004-033.htmlhttp://www.securityfocus.com/advisories/6281http://www.securityfocus.com/bid/9489http://www.securitytracker.com/id?1008850http://www.slackware.com/security/viewer.php?l=slackware-security&y=2004&m=slackware-security.361158https://exchange.xforce.ibmcloud.com/vulnerabilities/14946https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A819https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9906
2004-03-03
Published