Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2003-0163 | 1 Gaim-encryption | 1 Gaim-encryption | 2016-10-17 | 5.0 MEDIUM | N/A |
decrypt_msg for the Gaim-Encryption GAIM plugin 1.15 and earlier does not properly validate a message length parameter, which allows remote attackers to cause a denial of service (crash) via a negative length, which overwrites arbitrary heap memory with a zero byte. | |||||
CVE-2005-4693 | 1 Gaim-encryption | 1 Gaim-encryption | 2008-09-05 | 5.0 MEDIUM | N/A |
Gaim-Encryption 2.38-1 on Debian Linux allows remote attackers to cause a denial of service (crash) via a crafted message from an ICQ buddy, possibly involving the GE_received_key function in keys.c. |