CVE-2005-0472

7 documents6 sources
Severity
5.0MEDIUM
EPSS
8.2%
top 7.79%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
Mandrakesoft Mandrake LinuxMandrakesoft Mandrake Linux Corporate ServerRedhat Enterprise Linux+2 more
Timeline
PublishedMar 14
Latest updateMay 1

Description

Gaim before 1.1.3 allows remote attackers to cause a denial of service (infinite loop) via malformed SNAC packets from (1) AIM or (2) ICQ.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages4 packages

NVDrob_flynn/gaim4 versions+3
NVDmandrakesoft/mandrake_linux10.0, 10.1+1

Also affects: Enterprise Linux 4.0

Patches

Patch: www.kb.cert.orgPatch: www.kb.cert.org

🔴Vulnerability Details

2
GHSA
GHSA-rhx6-42v7-6767: Gaim before 12022-05-01
CVEList
CVE-2005-0472: Gaim before 12005-02-19

📋Vendor Advisories

2
Ubuntu
Gaim vulnerabilities2005-02-26
Red Hat
security flaw2005-02-17

💬Community

2
Bugzilla
CVE-2005-0472 security flaw2018-08-16
Bugzilla
CAN-2005-0208,0472,0473,0965,0966,0967 gaim security issues2005-03-10