CVE-2004-0008

5 documents5 sources

Severity

7.5HIGH

EPSS

20.0%

top 4.53%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

ROB Flynn Gaim Ultramagnetic Ultramagnetic

Timeline

PublishedMar 3

Latest updateMay 3

Description

Integer overflow in Gaim 0.74 and earlier, and Ultramagnetic before 0.81, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a directIM packet that triggers a heap-based buffer overflow.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages2 packages

▶NVDrob_flynn/gaim0.74

▶NVDultramagnetic/ultramagnetic0.81

Patches

Patch: security.e-matters.de ↗Patch: ultramagnetic.sourceforge.net ↗Patch: www.redhat.com ↗

🔴Vulnerability Details

GHSA

GHSA-6r82-pmh7-jjf5: Integer overflow in Gaim 0↗2022-05-03

▶

CVEList

CVE-2004-0008: Integer overflow in Gaim 0↗2004-01-29

▶

📋Vendor Advisories

Red Hat

security flaw↗2004-01-26

▶

💬Community

Bugzilla

CVE-2004-0008 security flaw↗2018-08-16

▶