Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-3775

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2014-3775
Last Modified 13 Jun 2014 12:55:58
Published 22 May 2014 07:14:15
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2014-3775

Summary

libgadu before 1.11.4 and 1.12.0 before 1.12.0-rc3, as used in Pidgin and other products, allows remote Gadu-Gadu file relay servers to cause a denial of service (memory overwrite) or possibly execute arbitrary code via a crafted message.

Vulnerable Systems

Application

  • Libgadu 1.11.4

  • Libgadu 1.12.0


References

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=1099776

UBUNTU - USN-2216-1

MLIST - [oss-security] 20140519 Re: libgadu vulnerability: possible memory corruption

MLIST - [libgadu-devel] 20140508 libgadu 1.11.4

MLIST - [libgadu-devel] 20140507 libgadu 1.12.0-rc3

UBUNTU - USN-2215-1

DEBIAN - DSA-2935

SECUNIA - 58871

SECUNIA - 58870

SECUNIA - 58668


Last Updated: 27 May 2016 11:05:32