Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2005-1852

Published: 26/07/2005 Updated: 11/10/2017
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Ekg

Vulnerability Summary

Multiple integer overflows in libgadu, as used in Kopete in KDE 3.2.3 to 3.4.1, ekg prior to 1.6rc3, GNU Gadu, CenterICQ, Kadu, and other packages, allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via an incoming message.

Vulnerable Product Search on Vulmon Subscribe to Product

ekg ekg 1.1_rc2

ekg ekg 1.3

ekg ekg 1.1

ekg ekg 1.1_rc1

ekg ekg 1.4

ekg ekg 1.5

ekg ekg 1.0

ekg ekg 1.0_rc2

ekg ekg 1.0_rc3

ekg ekg 1.5_rc1

ekg ekg 1.5_rc2

kde kde 3.3

kde kde 3.3.1

kde kde 3.2.3

kde kde 3.3.2

kde kde 3.4

kde kde 3.4.0

kde kde 3.4.1

centericq centericq

kadu kadu

Vendor Advisories

Red Hat: kdenetwork security update
Synopsis kdenetwork security update Type/Severity Security Advisory: Critical Topic Updated kdenetwork packages to correct a security flaw in Kopete are nowavailable for Red Hat Enterprise Linux 4This update has been rated as having critical security impact by the RedHat Security Response Team De ...
Ubuntu Security Notice: ekg vulnerabilities
Marcin Owsiany and Wojtek Kaniewski discovered that some contributed scripts (contrib/ekgh, contrib/ekgnvsh, and contrib/getekgsh) in the ekg package created temporary files in an insecure way, which allowed exploitation of a race condition to create or overwrite files with the privileges of the user invoking the script (CAN-2005-1850) ...
Debian Security Advisories: DSA-767-1 ekg -- integer overflows
Marcin Slusarz discovered two integer overflow vulnerabilities in libgadu, a library provided and used by ekg, a console Gadu Gadu client, an instant messaging program, that could lead to the execution of arbitrary code The library is also used by other packages such as kopete, which should be restarted to take effect of this update The old stabl ...

References

CWE-189http://www.kde.org/info/security/advisory-20050721-1.txthttp://lwn.net/Articles/144724/http://security.gentoo.org/glsa/glsa-200507-23.xmlhttp://www.securityfocus.com/bid/14345http://www.gentoo.org/security/en/glsa/glsa-200507-26.xmlhttp://secunia.com/advisories/16140http://secunia.com/advisories/16155http://secunia.com/advisories/16211http://secunia.com/advisories/16242http://www.redhat.com/support/errata/RHSA-2005-639.htmlhttp://www.novell.com/linux/security/advisories/2005_19_sr.htmlhttp://marc.info/?l=bugtraq&m=112198499417250&w=2https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9532https://access.redhat.com/errata/RHSA-2005:639https://usn.ubuntu.com/162-1/https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907hardcodedinjectCVE-2024-20359CVE-2024-2467CVE-2024-4077CVE-2024-22391cameraCVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook