FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

gaim -- multiple buffer overflows

Affected packages
		gaim	<	0.82
		ja-gaim	<	0.82
		ko-gaim	<	0.82
		ru-gaim	<	0.82
20030000	<	gaim

Details

VuXML ID	4260eacb-26b8-11d9-9289-000c41e2cdad
Discovery	2004-08-26
Entry	2004-10-25

Sean infamous42md reports several situations in gaim that may result in exploitable buffer overflows:

Rich Text Format (RTF) messages in Novell GroupWise protocol
Unsafe use of gethostbyname in zephyr protocol
URLs which are over 2048 bytes long once decoded

References

CVE Name	CVE-2004-0785
URL	http://gaim.sourceforge.net/security/?id=3
URL	http://gaim.sourceforge.net/security/?id=4
URL	http://gaim.sourceforge.net/security/?id=5

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.