CVE-2005-1934
published 2005-05-19CVE-2005-1934: Gaim before 1.3.1 allows remote attackers to cause a denial of service (crash) via a malformed MSN message that leads to a memory allocation of a large size…
PriorityP414medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
2.38%
81.8th percentile
Gaim before 1.3.1 allows remote attackers to cause a denial of service (crash) via a malformed MSN message that leads to a memory allocation of a large size, possibly due to an integer signedness error.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| rob_flynn | gaim | <= 1.3.0 | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
vendor_redhat5.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
Gaim vulnerability
vendor_ubuntu·2005-06-15
CVE-2005-1934 Gaim vulnerability
Title: Gaim vulnerability
Summary: Gaim vulnerability
A remote Denial of Service vulnerability was discovered in Gaim. A
remote attacker could crash the Gaim client of an MSN user by sending
a specially crafted MSN package which states an invalid body length in
the header.
Instructions: In general, a standard system update will make all the necessary changes.
Red Hat
security flaw
vendor_redhat·2005-06-09·CVSS 5.0
CVE-2005-1934 [MEDIUM] security flaw
security flaw
Gaim before 1.3.1 allows remote attackers to cause a denial of service (crash) via a malformed MSN message that leads to a memory allocation of a large size, possibly due to an integer signedness error.
GHSA
GHSA-hq79-cp3f-mcr5: Gaim before 1
ghsa_unreviewed·2022-05-01
CVE-2005-1934 [MEDIUM] GHSA-hq79-cp3f-mcr5: Gaim before 1
Gaim before 1.3.1 allows remote attackers to cause a denial of service (crash) via a malformed MSN message that leads to a memory allocation of a large size, possibly due to an integer signedness error.
No detection rules found.
No public exploits indexed.
http://security.gentoo.org/glsa/glsa-200506-11.xmlhttp://sourceforge.net/tracker/index.php?func=detail&aid=1205290&group_id=235&atid=100235http://www.debian.org/security/2005/dsa-734http://www.mandriva.com/security/advisories?name=MDKSA-2005:099http://www.novell.com/linux/security/advisories/2005_36_sudo.htmlhttp://www.redhat.com/support/errata/RHSA-2005-518.htmlhttp://www.securityfocus.com/archive/1/426078/100/0/threadedhttp://www.securityfocus.com/bid/13932https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10368https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A263http://security.gentoo.org/glsa/glsa-200506-11.xmlhttp://sourceforge.net/tracker/index.php?func=detail&aid=1205290&group_id=235&atid=100235http://www.debian.org/security/2005/dsa-734http://www.mandriva.com/security/advisories?name=MDKSA-2005:099http://www.novell.com/linux/security/advisories/2005_36_sudo.htmlhttp://www.redhat.com/support/errata/RHSA-2005-518.htmlhttp://www.securityfocus.com/archive/1/426078/100/0/threadedhttp://www.securityfocus.com/bid/13932https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10368https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A263
2005-05-19
Published