Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2004-0006
Description:Multiple buffer overflows in Gaim 0.75 and earlier, and Ultramagnetic before 0.81, allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) cookies in a Yahoo web connection, (2) a long name parameter in the Yahoo login web page, (3) a long value parameter in the Yahoo login page, (4) a YMSG packet, (5) the URL parser, and (6) HTTP proxy connect.
Test IDs:  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2004-0006
BugTraq ID: 9489
Bugtraq: 20040126 Advisory 01/2004: 12 x Gaim remote overflows (Google Search)
Bugtraq: 20040127 Ultramagnetic Advisory #001: Multiple vulnerabilities in Gaim code (Google Search)
CERT/CC vulnerability note: VU#297198
CERT/CC vulnerability note: VU#371382
CERT/CC vulnerability note: VU#444158
CERT/CC vulnerability note: VU#503030
CERT/CC vulnerability note: VU#527142
CERT/CC vulnerability note: VU#871838
Conectiva Linux advisory: CLA-2004:813
Debian Security Information: DSA-434 (Google Search)
RedHat Security Advisories: RHSA-2004:032
RedHat Security Advisories: RHSA-2004:033
RedHat Security Advisories: RHSA-2004:045
SGI Security Advisory: 20040201-01-U
SGI Security Advisory: 20040202-01-U
SuSE Security Announcement: SuSE-SA:2004:004 (Google Search)
XForce ISS Database: gaim-http-proxy-bo(14947)
XForce ISS Database: gaim-login-name-bo(14940)
XForce ISS Database: gaim-login-value-bo(14941)
XForce ISS Database: gaim-urlparser-bo(14945)
XForce ISS Database: gaim-yahoopacketread-keyname-bo(14943)
XForce ISS Database: gaim-yahoowebpending-cookie-bo(14939)

© 1998-2021 E-Soft Inc. All rights reserved.