Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0007

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2004-0007
Last Modified 21 Aug 2010 12:19:26
Published 03 Mar 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0007

Summary

Buffer overflow in the Extract Info Field Function for (1) MSN and (2) YMSG protocol handlers in Gaim 0.74 and earlier, and Ultramagnetic before 0.81, allows remote attackers to cause a denial of service and possibly execute arbitrary code.

Vulnerable Systems

Application

  • Rob Flynn Gaim 0.74

  • Ultramagnetic 0.81


References

CERT-VN - VU#197142

REDHAT - RHSA-2004:033

DEBIAN - DSA-434

CONFIRM - http://ultramagnetic.sourceforge.net/advisories/001.html

MISC - http://security.e-matters.de/advisories/012004.html

BUGTRAQ - 20040127 Ultramagnetic Advisory #001: Multiple vulnerabilities in Gaim code

REDHAT - RHSA-2004:032

GENTOO - GLSA-200401-04

XF - gaim-extractinfo-bo(14946)

SLACKWARE - SSA:2004-026

SECTRACK - 1008850

BID - 9489

SUSE - SuSE-SA:2004:004

OSVDB - 3733

MANDRAKE - MDKSA-2004:006

BUGTRAQ - 20040126 Advisory 01/2004: 12 x Gaim remote overflows

CONECTIVA - CLA-2004:813


Last Updated: 27 May 2016 10:38:26