Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0008

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2004-0008
Last Modified 21 Aug 2010 12:19:26
Published 03 Mar 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0008

Summary

Integer overflow in Gaim 0.74 and earlier, and Ultramagnetic before 0.81, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a directIM packet that triggers a heap-based buffer overflow.

Vulnerable Systems

Application

  • Rob Flynn Gaim 0.74

  • Ultramagnetic 0.81


References

CERT-VN - VU#779614

REDHAT - RHSA-2004:032

CONFIRM - http://ultramagnetic.sourceforge.net/advisories/001.html

MISC - http://security.e-matters.de/advisories/012004.html

BUGTRAQ - 20040127 Ultramagnetic Advisory #001: Multiple vulnerabilities in Gaim code

REDHAT - RHSA-2004:045

REDHAT - RHSA-2004:033

DEBIAN - DSA-434

GENTOO - GLSA-200401-04

SGI - 20040201-01-U

XF - gaim-directim-bo(14937)

SECTRACK - 1008850

OSVDB - 3734

MANDRAKE - MDKSA-2004:006

BUGTRAQ - 20040127 [slackware-security] GAIM security update (SSA:2004-026-01)

BUGTRAQ - 20040126 Advisory 01/2004: 12 x Gaim remote overflows

CONECTIVA - CLA-2004:813

SGI - 20040202-01-U


Last Updated: 27 May 2016 10:38:26