CVE-2004-0785

5 documents5 sources

Severity

7.5HIGH

EPSS

6.3%

top 9.05%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

ROB Flynn Gaim

Timeline

PublishedOct 20

Latest updateApr 29

Description

Multiple buffer overflows in Gaim before 0.82 allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) Rich Text Format (RTF) messages, (2) a long hostname for the local system as obtained from DNS, or (3) a long URL that is not properly handled by the URL decoder.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

▶NVDrob_flynn/gaim29 versions+28

Patches

Patch: gaim.sourceforge.net ↗Patch: www.fedoranews.org ↗Patch: www.fedoranews.org ↗

🔴Vulnerability Details

GHSA

GHSA-rhmh-97h3-458w: Multiple buffer overflows in Gaim before 0↗2022-04-29

▶

CVEList

CVE-2004-0785: Multiple buffer overflows in Gaim before 0↗2004-09-02

▶

📋Vendor Advisories

Red Hat

security flaw↗2004-08-12

▶

💬Community

Bugzilla

CVE-2004-0785 security flaw↗2018-08-16

▶