Vulnerabilities (CVE)

Filtered by vendor Rob Flynn Subscribe

Filtered by product Gaim

Total 26 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2004-0008	2 Rob Flynn, Ultramagnetic	2 Gaim, Ultramagnetic	2024-02-28	7.5 HIGH	N/A
Integer overflow in Gaim 0.74 and earlier, and Ultramagnetic before 0.81, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a directIM packet that triggers a heap-based buffer overflow.
CVE-2004-0785	1 Rob Flynn	1 Gaim	2024-02-28	7.5 HIGH	N/A
Multiple buffer overflows in Gaim before 0.82 allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) Rich Text Format (RTF) messages, (2) a long hostname for the local system as obtained from DNS, or (3) a long URL that is not properly handled by the URL decoder.
CVE-2004-0006	2 Rob Flynn, Ultramagnetic	2 Gaim, Ultramagnetic	2024-02-28	7.5 HIGH	N/A
Multiple buffer overflows in Gaim 0.75 and earlier, and Ultramagnetic before 0.81, allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) cookies in a Yahoo web connection, (2) a long name parameter in the Yahoo login web page, (3) a long value parameter in the Yahoo login page, (4) a YMSG packet, (5) the URL parser, and (6) HTTP proxy connect.
CVE-2002-0384	1 Rob Flynn	1 Gaim	2024-02-28	7.5 HIGH	N/A
Buffer overflow in Jabber plug-in for Gaim client before 0.58 allows remote attackers to execute arbitrary code.
CVE-2000-1172	1 Rob Flynn	1 Gaim	2024-02-28	10.0 HIGH	N/A
Buffer overflow in Gaim 0.10.3 and earlier using the OSCAR protocol allows remote attackers to conduct a denial of service and possibly execute arbitrary commands via a long HTML tag.
CVE-2002-0377	1 Rob Flynn	1 Gaim	2024-02-28	2.1 LOW	N/A
Gaim 0.57 stores sensitive information in world-readable and group-writable files in the /tmp directory, which allows local users to access MSN web email accounts of other users who run Gaim by reading authentication information from the files.