Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-1676

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2004-1676
Last Modified 05 Sep 2008 04:42:03
Published 12 Sep 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-1676

Summary

Heap-based buffer overflow in the image sending feature in Gadu-Gadu 6.0 build 149 allows remote attackers to execute arbitrary code via a crafted GG_MSG_IMAGE_REPLY message.

Vulnerable Systems

Application

  • Gadu-gadu Instant Messenger 6.0

  • Gadu-gadu Instant Messenger 6.0 Build149


References

XF - gadu-gadu-image-bo(17324)

BID - 11158

SECUNIA - 12510

BUGTRAQ - 20040912 Gadu-Gadu (all versions with image-send feature) Heap Overflow


Last Updated: 27 May 2016 10:39:08