The smiley theme functionality in Gaim before 0.82 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of the tar file that is dragged to the smiley selector.
References
Configurations
Configuration 1 (hide)
|
History
20 Nov 2024, 23:49
Type | Values Removed | Values Added |
---|---|---|
References | () http://gaim.sourceforge.net/security/?id=1 - Patch, Vendor Advisory | |
References | () http://www.fedoranews.org/updates/FEDORA-2004-278.shtml - Patch, Vendor Advisory | |
References | () http://www.fedoranews.org/updates/FEDORA-2004-279.shtml - Patch, Vendor Advisory | |
References | () http://www.gentoo.org/security/en/glsa/glsa-200408-27.xml - Vendor Advisory | |
References | () http://www.redhat.com/support/errata/RHSA-2004-400.html - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/17144 - | |
References | () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10008 - |
Information
Published : 2004-10-20 04:00
Updated : 2024-11-20 23:49
NVD link : CVE-2004-0784
Mitre link : CVE-2004-0784
CVE.ORG link : CVE-2004-0784
JSON object : View
Products Affected
rob_flynn
- gaim
CWE