| Max CVSS | 10.0 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2004-2529 | 5.0 |
Gadu-Gadu allows remote attackers to bypass the "image send" option by sending a very small image file, which could be used in conjunction with image-related vulnerabilities.
|
11-07-2017 - 01:31 | 31-12-2004 - 05:00 | |
| CVE-2004-1233 | 5.0 |
Integer overflow in Gadu-Gadu allows remote attackers to cause a denial of service (disk consumption) via a user packet to the DCC file transfer capability with an invalid file length.
|
11-07-2017 - 01:30 | 10-01-2005 - 05:00 | |
| CVE-2004-1232 | 10.0 |
Stack-based buffer overflow in the code that sends images in Gadu-Gadu allows remote attackers to execute arbitrary code via a large image filename.
|
11-07-2017 - 01:30 | 10-01-2005 - 05:00 | |
| CVE-2004-1230 | 5.0 |
Gadu-Gadu allows remote attackers to gain sensitive information and read files from the _cache directory of other users via a DCC connection and a CTCP packet that contains a 1 as the type and a 4 as the subtype.
|
11-07-2017 - 01:30 | 10-01-2005 - 05:00 | |
| CVE-2004-1231 | 5.0 |
Directory traversal vulnerability in Gadu-Gadu allows remote attackers to read arbitrary files via .. (dot dot) sequences in a DCC connection with a CTCP packet that contains a 1 as the type and a 4 as the subtype.
|
11-07-2017 - 01:30 | 10-01-2005 - 05:00 | |
| CVE-2004-1229 | 7.5 |
Cross-site scripting vulnerability in the parser for Gadu-Gadu allows remote attackers to inject arbitrary web script or HTML via (1) http:// or (2) news:// URLs, a different vulnerability than CVE-2004-1410.
|
18-10-2016 - 02:52 | 10-01-2005 - 05:00 |