Vulnerabilities (CVE)

Filtered by vendor Rob Flynn Subscribe
Filtered by product Gaim
Total 26 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2004-0008 2 Rob Flynn, Ultramagnetic 2 Gaim, Ultramagnetic 2024-02-28 7.5 HIGH N/A
Integer overflow in Gaim 0.74 and earlier, and Ultramagnetic before 0.81, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a directIM packet that triggers a heap-based buffer overflow.
CVE-2004-0785 1 Rob Flynn 1 Gaim 2024-02-28 7.5 HIGH N/A
Multiple buffer overflows in Gaim before 0.82 allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) Rich Text Format (RTF) messages, (2) a long hostname for the local system as obtained from DNS, or (3) a long URL that is not properly handled by the URL decoder.
CVE-2004-0006 2 Rob Flynn, Ultramagnetic 2 Gaim, Ultramagnetic 2024-02-28 7.5 HIGH N/A
Multiple buffer overflows in Gaim 0.75 and earlier, and Ultramagnetic before 0.81, allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) cookies in a Yahoo web connection, (2) a long name parameter in the Yahoo login web page, (3) a long value parameter in the Yahoo login page, (4) a YMSG packet, (5) the URL parser, and (6) HTTP proxy connect.
CVE-2002-0384 1 Rob Flynn 1 Gaim 2024-02-28 7.5 HIGH N/A
Buffer overflow in Jabber plug-in for Gaim client before 0.58 allows remote attackers to execute arbitrary code.
CVE-2000-1172 1 Rob Flynn 1 Gaim 2024-02-28 10.0 HIGH N/A
Buffer overflow in Gaim 0.10.3 and earlier using the OSCAR protocol allows remote attackers to conduct a denial of service and possibly execute arbitrary commands via a long HTML tag.
CVE-2002-0377 1 Rob Flynn 1 Gaim 2024-02-28 2.1 LOW N/A
Gaim 0.57 stores sensitive information in world-readable and group-writable files in the /tmp directory, which allows local users to access MSN web email accounts of other users who run Gaim by reading authentication information from the files.