Filtered by vendor Rob Flynn
Subscribe
Total
28 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2004-0784 | 1 Rob Flynn | 1 Gaim | 2017-10-10 | 7.5 HIGH | N/A |
The smiley theme functionality in Gaim before 0.82 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of the tar file that is dragged to the smiley selector. | |||||
CVE-2004-2589 | 1 Rob Flynn | 1 Gaim | 2017-07-10 | 5.0 MEDIUM | N/A |
Gaim before 0.82 allows remote servers to cause a denial of service (application crash) via a long HTTP Content-Length header, which causes Gaim to abort when attempting to allocate memory. | |||||
CVE-2004-0005 | 1 Rob Flynn | 1 Gaim | 2017-07-10 | 7.5 HIGH | N/A |
Multiple buffer overflows in Gaim 0.75 allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) octal encoding in yahoo_decode that causes a null byte to be written beyond the buffer, (2) octal encoding in yahoo_decode that causes a pointer to reference memory beyond the terminating null byte, (3) a quoted printable string to the gaim_quotedp_decode MIME decoder that causes a null byte to be written beyond the buffer, and (4) quoted printable encoding in gaim_quotedp_decode that causes a pointer to reference memory beyond the terminating null byte. | |||||
CVE-2005-0573 | 1 Rob Flynn | 1 Gaim | 2016-10-17 | 5.0 MEDIUM | N/A |
Gaim 1.1.3 on Windows systems allows remote attackers to cause a denial of service (client crash) via a file transfer in which the filename contains "(" or ")" (parenthesis) characters. | |||||
CVE-2002-0989 | 1 Rob Flynn | 1 Gaim | 2016-10-17 | 7.5 HIGH | N/A |
The URL handler in the manual browser option for Gaim before 0.59.1 allows remote attackers to execute arbitrary script via shell metacharacters in a link. | |||||
CVE-2002-0377 | 1 Rob Flynn | 1 Gaim | 2016-10-17 | 2.1 LOW | N/A |
Gaim 0.57 stores sensitive information in world-readable and group-writable files in the /tmp directory, which allows local users to access MSN web email accounts of other users who run Gaim by reading authentication information from the files. | |||||
CVE-2002-0384 | 1 Rob Flynn | 1 Gaim | 2008-09-10 | 7.5 HIGH | N/A |
Buffer overflow in Jabber plug-in for Gaim client before 0.58 allows remote attackers to execute arbitrary code. | |||||
CVE-2000-1172 | 1 Rob Flynn | 1 Gaim | 2008-09-05 | 10.0 HIGH | N/A |
Buffer overflow in Gaim 0.10.3 and earlier using the OSCAR protocol allows remote attackers to conduct a denial of service and possibly execute arbitrary commands via a long HTML tag. |