CVE-2004-0007

5 documents5 sources

Severity

7.5HIGH

EPSS

26.4%

top 3.68%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

ROB Flynn Gaim Ultramagnetic Ultramagnetic

Timeline

PublishedMar 3

Latest updateApr 29

Description

Buffer overflow in the Extract Info Field Function for (1) MSN and (2) YMSG protocol handlers in Gaim 0.74 and earlier, and Ultramagnetic before 0.81, allows remote attackers to cause a denial of service and possibly execute arbitrary code.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages2 packages

▶NVDrob_flynn/gaim0.74

▶NVDultramagnetic/ultramagnetic0.81

Patches

Patch: security.e-matters.de ↗Patch: ultramagnetic.sourceforge.net ↗Patch: www.debian.org ↗

🔴Vulnerability Details

GHSA

GHSA-364g-x2w9-9jh7: Buffer overflow in the Extract Info Field Function for (1) MSN and (2) YMSG protocol handlers in Gaim 0↗2022-04-29

▶

CVEList

CVE-2004-0007: Buffer overflow in the Extract Info Field Function for (1) MSN and (2) YMSG protocol handlers in Gaim 0↗2004-01-29

▶

📋Vendor Advisories

Red Hat

security flaw↗2004-01-26

▶

💬Community

Bugzilla

CVE-2004-0007 security flaw↗2018-08-16

▶