Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-2530

Overview

Vulnerability Score 2.6 2.6
CVE Id CVE-2004-2530
Last Modified 05 Sep 2008 04:44:23
Published 31 Dec 2004 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2004-2530

Summary

Visual truncation vulnerability in Gadu-Gadu allows remote attackers to spoof the file extension on transmitted files via a filename with a large number of spaces followed by the real extension, which is not displayed in the dialog box.

Vulnerable Systems


References

XF - gadu-gadu-file-ext-spoof(17105)

BID - 11017

OSVDB - 9162

SECTRACK - 1011037

VULN-DEV - 20040821 GADU-GADU Instant messanger - long file name


Last Updated: 27 May 2016 10:39:30