Description
Buffer overflow in the MSN protocol handler for gaim 0.79 to 1.0.1 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an "unexpected sequence of MSNSLP messages" that results in an unbounded copy operation that writes to the wrong buffer.
References (9)
Core 9
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/17787
Issue Tracking vendor-advisory
x_refsource_fedora
https://bugzilla.fedora.us/show_bug.cgi?id=2188
Third Party Advisory vendor-advisory
x_refsource_gentoo
http://www.gentoo.org/security/en/glsa/glsa-200410-23.xml
Vendor Advisory x_refsource_confirm
http://gaim.sourceforge.net/security/?id=9
Third Party Advisory, VDB Entry vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11790
Vendor Advisory vendor-advisory
x_refsource_ubuntu
https://www.ubuntu.com/usn/usn-8-1/
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/17790
Vendor Advisory vendor-advisory
x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2004-604.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/17786
Scores
EPSS
0.0544
EPSS Percentile
90.3%
Details
Status
published
Products (41)
gentoo/linux
gentoo/linux
1.4
rob_flynn/gaim
0.10
rob_flynn/gaim
0.10.3
rob_flynn/gaim
0.50
rob_flynn/gaim
0.51
rob_flynn/gaim
0.52
rob_flynn/gaim
0.53
rob_flynn/gaim
0.54
rob_flynn/gaim
0.55
... and 31 more
Published
Jan 27, 2005
Tracked Since
Feb 18, 2026