CVE-2004-0500
CVE-2004-0500
Buffer overflow in the MSN protocol plugins (1) object.c and (2) slp.c for Gaim before 0.82 allows remote attackers to cause a denial of service and possibly execute arbitrary code via MSNSLP protocol messages that are not properly handled in a strncpy call.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://gaim.sourceforge.net/security/?id=0https://exchange.xforce.ibmcloud.com/vulnerabilities/16920https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9429http://www.fedoranews.org/updates/FEDORA-2004-278.shtmlhttp://www.fedoranews.org/updates/FEDORA-2004-279.shtmlhttp://www.gentoo.org/security/en/glsa/glsa-200408-12.xmlhttp://www.gentoo.org/security/en/glsa/glsa-200408-27.xmlhttp://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:081http://www.novell.com/linux/security/advisories/2004_25_gaim.htmlhttp://www.redhat.com/support/errata/RHSA-2004-400.htmlhttp://www.securityfocus.com/bid/10865