5

CVE-2005-0208

The HTML parsing functions in Gaim before 1.1.4 allow remote attackers to cause a denial of service (application crash) via malformed HTML that causes "an invalid memory access," a different vulnerability than CVE-2005-0473.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Rob FlynnGaim Version1.1.0
Rob FlynnGaim Version1.1.1
Rob FlynnGaim Version1.1.2
Rob FlynnGaim Version1.1.3
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 3.2% 0.865
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www.novell.com/linux/security/advisories/2005_36_sudo.html
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000933
Patch
http://marc.info/?l=bugtraq&m=110935655500670&w=2
http://www.gentoo.org/security/en/glsa/glsa-200503-03.xml
Patch
Vendor Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2005:049
http://www.redhat.com/support/errata/RHSA-2005-215.html
Patch
Vendor Advisory
http://www.securityfocus.com/archive/1/426078/100/0/threaded
http://gaim.sourceforge.net/security/?id=12
Vendor Advisory
http://secunia.com/advisories/14386
Patch
Vendor Advisory
http://www.kb.cert.org/vuls/id/795812
Patch
Third Party Advisory
US Government Resource
http://www.securityfocus.com/bid/12660
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10477