Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2004-0005
Description:Multiple buffer overflows in Gaim 0.75 allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) octal encoding in yahoo_decode that causes a null byte to be written beyond the buffer, (2) octal encoding in yahoo_decode that causes a pointer to reference memory beyond the terminating null byte, (3) a quoted printable string to the gaim_quotedp_decode MIME decoder that causes a null byte to be written beyond the buffer, and (4) quoted printable encoding in gaim_quotedp_decode that causes a pointer to reference memory beyond the terminating null byte.
Test IDs: 1.3.6.1.4.1.25623.1.0.53132  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2004-0005
Bugtraq: 20040126 Advisory 01/2004: 12 x Gaim remote overflows (Google Search)
http://marc.info/?l=bugtraq&m=107513690306318&w=2
CERT/CC vulnerability note: VU#190366
http://www.kb.cert.org/vuls/id/190366
CERT/CC vulnerability note: VU#226974
http://www.kb.cert.org/vuls/id/226974
CERT/CC vulnerability note: VU#404470
http://www.kb.cert.org/vuls/id/404470
CERT/CC vulnerability note: VU#655974
http://www.kb.cert.org/vuls/id/655974
Conectiva Linux advisory: CLA-2004:813
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000813
Debian Security Information: DSA-434 (Google Search)
http://www.debian.org/security/2004/dsa-434
http://archives.neohapsis.com/archives/fulldisclosure/2004-01/0994.html
https://security.gentoo.org/glsa/200401-04
http://security.e-matters.de/advisories/012004.html
http://www.osvdb.org/3736
http://www.securitytracker.com/id?1008850
http://www.slackware.com/security/viewer.php?l=slackware-security&y=2004&m=slackware-security.361158
SuSE Security Announcement: SuSE-SA:2004:004 (Google Search)
http://www.novell.com/linux/security/advisories/2004_04_gaim.html
XForce ISS Database: gaim-mime-decoder-bo(14942)
https://exchange.xforce.ibmcloud.com/vulnerabilities/14942
XForce ISS Database: gaim-mime-decoder-oob(14944)
https://exchange.xforce.ibmcloud.com/vulnerabilities/14944
XForce ISS Database: gaim-sscanf-oob(14938)
https://exchange.xforce.ibmcloud.com/vulnerabilities/14938
XForce ISS Database: gaim-yahoodecode-offbyone-bo(14935)
https://exchange.xforce.ibmcloud.com/vulnerabilities/14935




© 1998-2024 E-Soft Inc. All rights reserved.