| Max CVSS | 7.5 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2005-2103 | 7.5 |
Buffer overflow in the AIM and ICQ module in Gaim before 1.5.0 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an away message with a large number of AIM substitution strings, such as %
|
02-02-2024 - 15:02 | 16-08-2005 - 04:00 | |
| CVE-2005-2370 | 5.0 |
Multiple "memory alignment errors" in libgadu, as used in ekg before 1.6rc2, Gaim before 1.5.0, and other packages, allows remote attackers to cause a denial of service (bus error) on certain architectures such as SPARC via an incoming message.
|
19-10-2018 - 15:32 | 26-07-2005 - 04:00 | |
| CVE-2005-1934 | 5.0 |
Gaim before 1.3.1 allows remote attackers to cause a denial of service (crash) via a malformed MSN message that leads to a memory allocation of a large size, possibly due to an integer signedness error.
|
19-10-2018 - 15:32 | 19-05-2005 - 04:00 | |
| CVE-2005-2102 | 5.0 |
The AIM/ICQ module in Gaim before 1.5.0 allows remote attackers to cause a denial of service (application crash) via a filename that contains invalid UTF-8 characters.
|
19-10-2018 - 15:32 | 16-08-2005 - 04:00 | |
| CVE-2005-0208 | 5.0 |
The HTML parsing functions in Gaim before 1.1.4 allow remote attackers to cause a denial of service (application crash) via malformed HTML that causes "an invalid memory access," a different vulnerability than CVE-2005-0473.
|
19-10-2018 - 15:31 | 02-05-2005 - 04:00 | |
| CVE-2005-0967 | 5.0 |
Gaim 1.2.0 allows remote attackers to cause a denial of service (application crash) via a malformed file transfer request to a Jabber user, which leads to an out-of-bounds read.
|
19-10-2018 - 15:31 | 02-05-2005 - 04:00 | |
| CVE-2005-0472 | 5.0 |
Gaim before 1.1.3 allows remote attackers to cause a denial of service (infinite loop) via malformed SNAC packets from (1) AIM or (2) ICQ.
|
19-10-2018 - 15:31 | 14-03-2005 - 05:00 | |
| CVE-2005-1262 | 5.0 |
Gaim 1.2.1 and earlier allows remote attackers to cause a denial of service (application crash) via a malformed MSN message.
|
19-10-2018 - 15:31 | 11-05-2005 - 04:00 | |
| CVE-2005-0473 | 5.0 |
The HTML parsing functions in Gaim before 1.1.3 allow remote attackers to cause a denial of service (application crash) via malformed HTML that causes "an invalid memory access," a different vulnerability than CVE-2005-0208.
|
19-10-2018 - 15:31 | 14-03-2005 - 05:00 | |
| CVE-2005-1269 | 5.0 |
Gaim before 1.3.1 allows remote attackers to cause a denial of service (application crash) via a Yahoo! message with non-ASCII characters in a file name.
|
19-10-2018 - 15:31 | 16-06-2005 - 04:00 | |
| CVE-2005-0965 | 5.0 |
The gaim_markup_strip_html function in Gaim 1.2.0, and possibly earlier versions, allows remote attackers to cause a denial of service (application crash) via a string that contains malformed HTML, which causes an out-of-bounds read.
|
19-10-2018 - 15:31 | 02-05-2005 - 04:00 | |
| CVE-2005-1261 | 7.5 |
Stack-based buffer overflow in the URL parsing function in Gaim before 1.3.0 allows remote attackers to execute arbitrary code via an instant message (IM) with a large URL.
|
19-10-2018 - 15:31 | 11-05-2005 - 04:00 | |
| CVE-2005-0966 | 6.4 |
The IRC protocol plugin in Gaim 1.2.0, and possibly earlier versions, allows (1) remote attackers to inject arbitrary Gaim markup via irc_msg_kick, irc_msg_mode, irc_msg_part, irc_msg_quit, (2) remote attackers to inject arbitrary Pango markup and po
|
19-10-2018 - 15:31 | 02-05-2005 - 04:00 |