Vulnerabilities (CVE)

Filtered by vendor Rob Flynn Subscribe
Filtered by product Gaim
Total 26 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2004-0007 2 Rob Flynn, Ultramagnetic 2 Gaim, Ultramagnetic 2024-11-20 7.5 HIGH N/A
Buffer overflow in the Extract Info Field Function for (1) MSN and (2) YMSG protocol handlers in Gaim 0.74 and earlier, and Ultramagnetic before 0.81, allows remote attackers to cause a denial of service and possibly execute arbitrary code.
CVE-2004-0006 2 Rob Flynn, Ultramagnetic 2 Gaim, Ultramagnetic 2024-11-20 7.5 HIGH N/A
Multiple buffer overflows in Gaim 0.75 and earlier, and Ultramagnetic before 0.81, allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) cookies in a Yahoo web connection, (2) a long name parameter in the Yahoo login web page, (3) a long value parameter in the Yahoo login page, (4) a YMSG packet, (5) the URL parser, and (6) HTTP proxy connect.
CVE-2002-0989 1 Rob Flynn 1 Gaim 2024-11-20 7.5 HIGH N/A
The URL handler in the manual browser option for Gaim before 0.59.1 allows remote attackers to execute arbitrary script via shell metacharacters in a link.
CVE-2002-0384 1 Rob Flynn 1 Gaim 2024-11-20 7.5 HIGH N/A
Buffer overflow in Jabber plug-in for Gaim client before 0.58 allows remote attackers to execute arbitrary code.
CVE-2002-0377 1 Rob Flynn 1 Gaim 2024-11-20 2.1 LOW N/A
Gaim 0.57 stores sensitive information in world-readable and group-writable files in the /tmp directory, which allows local users to access MSN web email accounts of other users who run Gaim by reading authentication information from the files.
CVE-2000-1172 1 Rob Flynn 1 Gaim 2024-11-20 10.0 HIGH N/A
Buffer overflow in Gaim 0.10.3 and earlier using the OSCAR protocol allows remote attackers to conduct a denial of service and possibly execute arbitrary commands via a long HTML tag.