CVE-2005-1261

Gaim <1.3.0 - Buffer Overflow

Title source: llm

Description

Stack-based buffer overflow in the URL parsing function in Gaim before 1.3.0 allows remote attackers to execute arbitrary code via an instant message (IM) with a large URL.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Ron · cdoslinux

https://www.exploit-db.com/exploits/999

View Code ZIP pw:eip

References (7)

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/13590

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/426078/100/0/threaded

[Third Party Advisory] http://www.vupen.com/english/advisories/2005/0519

[Patch, Vendor Advisory] http://gaim.sourceforge.net/security/index.php?id=16

[Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2005-429.html

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10725

[Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2005-432.html

Scores

EPSS 0.1624

EPSS Percentile 94.8%

Details

Status published

Products (48)

rob_flynn/gaim 0.10

rob_flynn/gaim 0.10.3

rob_flynn/gaim 0.50

rob_flynn/gaim 0.51

rob_flynn/gaim 0.52

rob_flynn/gaim 0.53

rob_flynn/gaim 0.54

rob_flynn/gaim 0.55

rob_flynn/gaim 0.56

rob_flynn/gaim 0.57

... and 38 more

Published May 11, 2005

Tracked Since Feb 18, 2026