CVE-2004-0500
published 2004-09-28CVE-2004-0500: Buffer overflow in the MSN protocol plugins (1) object.c and (2) slp.c for Gaim before 0.82 allows remote attackers to cause a denial of service and possibly…
PriorityP431high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
4.95%
91.1th percentile
Buffer overflow in the MSN protocol plugins (1) object.c and (2) slp.c for Gaim before 0.82 allows remote attackers to cause a denial of service and possibly execute arbitrary code via MSNSLP protocol messages that are not properly handled in a strncpy call.
Affected
32 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| gentoo | linux | — | — |
| mandrakesoft | mandrake_linux | — | — |
| mandrakesoft | mandrake_linux | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-cpr4-jj9p-gwfc: Buffer overflow in the MSN protocol plugins (1) object
ghsa_unreviewed·2022-04-29
CVE-2004-0500 [HIGH] GHSA-cpr4-jj9p-gwfc: Buffer overflow in the MSN protocol plugins (1) object
Buffer overflow in the MSN protocol plugins (1) object.c and (2) slp.c for Gaim before 0.82 allows remote attackers to cause a denial of service and possibly execute arbitrary code via MSNSLP protocol messages that are not properly handled in a strncpy call.
Red Hat
security flaw
vendor_redhat·2004-08-05·CVSS 7.5
CVE-2004-0500 [HIGH] security flaw
security flaw
Buffer overflow in the MSN protocol plugins (1) object.c and (2) slp.c for Gaim before 0.82 allows remote attackers to cause a denial of service and possibly execute arbitrary code via MSNSLP protocol messages that are not properly handled in a strncpy call.
No detection rules found.
No public exploits indexed.
http://gaim.sourceforge.net/security/?id=0http://www.fedoranews.org/updates/FEDORA-2004-278.shtmlhttp://www.fedoranews.org/updates/FEDORA-2004-279.shtmlhttp://www.gentoo.org/security/en/glsa/glsa-200408-12.xmlhttp://www.gentoo.org/security/en/glsa/glsa-200408-27.xmlhttp://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:081http://www.novell.com/linux/security/advisories/2004_25_gaim.htmlhttp://www.redhat.com/support/errata/RHSA-2004-400.htmlhttp://www.securityfocus.com/bid/10865https://exchange.xforce.ibmcloud.com/vulnerabilities/16920https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9429http://gaim.sourceforge.net/security/?id=0http://www.fedoranews.org/updates/FEDORA-2004-278.shtmlhttp://www.fedoranews.org/updates/FEDORA-2004-279.shtmlhttp://www.gentoo.org/security/en/glsa/glsa-200408-12.xmlhttp://www.gentoo.org/security/en/glsa/glsa-200408-27.xmlhttp://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:081http://www.novell.com/linux/security/advisories/2004_25_gaim.htmlhttp://www.redhat.com/support/errata/RHSA-2004-400.htmlhttp://www.securityfocus.com/bid/10865https://exchange.xforce.ibmcloud.com/vulnerabilities/16920https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9429
2004-09-28
Published