CVE-2004-0784
published 2004-10-20CVE-2004-0784: The smiley theme functionality in Gaim before 0.82 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of the tar…
PriorityP337high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
2.34%
81.5th percentile
The smiley theme functionality in Gaim before 0.82 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of the tar file that is dragged to the smiley selector.
Affected
29 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
| rob_flynn | gaim | — | — |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
security flaw
vendor_redhat·2004-08-26·CVSS 7.5
CVE-2004-0784 [HIGH] security flaw
security flaw
The smiley theme functionality in Gaim before 0.82 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of the tar file that is dragged to the smiley selector.
GHSA
GHSA-mq6w-7g5x-f5hr: The smiley theme functionality in Gaim before 0
ghsa_unreviewed·2022-04-29
CVE-2004-0784 [HIGH] GHSA-mq6w-7g5x-f5hr: The smiley theme functionality in Gaim before 0
The smiley theme functionality in Gaim before 0.82 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of the tar file that is dragged to the smiley selector.
No detection rules found.
No public exploits indexed.
http://gaim.sourceforge.net/security/?id=1http://www.fedoranews.org/updates/FEDORA-2004-278.shtmlhttp://www.fedoranews.org/updates/FEDORA-2004-279.shtmlhttp://www.gentoo.org/security/en/glsa/glsa-200408-27.xmlhttp://www.redhat.com/support/errata/RHSA-2004-400.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/17144https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10008http://gaim.sourceforge.net/security/?id=1http://www.fedoranews.org/updates/FEDORA-2004-278.shtmlhttp://www.fedoranews.org/updates/FEDORA-2004-279.shtmlhttp://www.gentoo.org/security/en/glsa/glsa-200408-27.xmlhttp://www.redhat.com/support/errata/RHSA-2004-400.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/17144https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10008
2004-10-20
Published