Published: 20/10/2004 Updated: 11/10/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

The smiley theme functionality in Gaim prior to 0.82 allows remote malicious users to execute arbitrary commands via shell metacharacters in the filename of the tar file that is dragged to the smiley selector.

Vulnerable Product	Search on Vulmon	Subscribe to Product
rob flynn gaim 0.10
rob flynn gaim 0.10.3
rob flynn gaim 0.56
rob flynn gaim 0.57
rob flynn gaim 0.58
rob flynn gaim 0.64
rob flynn gaim 0.65
rob flynn gaim 0.72
rob flynn gaim 0.73
rob flynn gaim 0.50
rob flynn gaim 0.51
rob flynn gaim 0.59
rob flynn gaim 0.59.1
rob flynn gaim 0.66
rob flynn gaim 0.54
rob flynn gaim 0.55
rob flynn gaim 0.62
rob flynn gaim 0.63
rob flynn gaim 0.70
rob flynn gaim 0.71
rob flynn gaim 0.67
rob flynn gaim 0.74
rob flynn gaim 0.75
rob flynn gaim 0.52
rob flynn gaim 0.53
rob flynn gaim 0.60
rob flynn gaim 0.61
rob flynn gaim 0.68
rob flynn gaim 0.69

Synopsis gaim security update Type/Severity Security Advisory: Critical Topic An updated gaim package that fixes several security issues is now available Description Gaim is an instant messenger client that can handle multiple protocolsBuffer overflow bugs were found in the Gaim MSN proto ...

NVD-CWE-Other http://gaim.sourceforge.net/security/?id=1 http://www.fedoranews.org/updates/FEDORA-2004-278.shtml http://www.fedoranews.org/updates/FEDORA-2004-279.shtml http://www.gentoo.org/security/en/glsa/glsa-200408-27.xml http://www.redhat.com/support/errata/RHSA-2004-400.html https://exchange.xforce.ibmcloud.com/vulnerabilities/17144 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10008 https://access.redhat.com/errata/RHSA-2004:400 https://nvd.nist.gov

CVE-2004-0784

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect