FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

gaim -- AIM/ICQ away message buffer overflow

Affected packages
gaim < 1.4.0_1
ja-gaim < 1.4.0_1
ko-gaim < 1.4.0_1
ru-gaim < 1.4.0_1

Details

VuXML ID 6d1761d2-0b23-11da-bc08-0001020eed82
Discovery 2005-08-09
Entry 2005-08-12

The GAIM team reports:

A remote AIM or ICQ user can cause a buffer overflow in Gaim by setting an away message containing many AIM substitution strings (such as %t or %n).

References

CVE Name CVE-2005-2103
URL http://gaim.sourceforge.net/security/?id=22