7.5

CVE-2004-0007

Buffer overflow in the Extract Info Field Function for (1) MSN and (2) YMSG protocol handlers in Gaim 0.74 and earlier, and Ultramagnetic before 0.81, allows remote attackers to cause a denial of service and possibly execute arbitrary code.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Rob FlynnGaim Version <= 0.74
UltramagneticUltramagnetic Version <= 0.81
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 7.19% 0.935
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://archives.neohapsis.com/archives/fulldisclosure/2004-01/0994.html
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000813
http://marc.info/?l=bugtraq&m=107513690306318&w=2
http://security.e-matters.de/advisories/012004.html
Patch
Vendor Advisory
http://www.debian.org/security/2004/dsa-434
Patch
Vendor Advisory
http://www.securitytracker.com/id?1008850
http://www.slackware.com/security/viewer.php?l=slackware-security&y=2004&m=slackware-security.361158
http://marc.info/?l=bugtraq&m=107522432613022&w=2
http://security.gentoo.org/glsa/glsa-200401-04.xml
http://ultramagnetic.sourceforge.net/advisories/001.html
Patch
Vendor Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2004:006
http://www.redhat.com/support/errata/RHSA-2004-032.html
http://www.redhat.com/support/errata/RHSA-2004-033.html
Patch
Vendor Advisory
http://www.securityfocus.com/bid/9489
http://www.kb.cert.org/vuls/id/197142
US Government Resource
http://www.osvdb.org/3733
http://www.securityfocus.com/advisories/6281
https://exchange.xforce.ibmcloud.com/vulnerabilities/14946
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A819
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9906