[CLOSE] OSVDB ID : 12517 - Disclosed: 2004-12-13

Description:

(Description Provided by CVE) : Cross-site scripting vulnerability in the parser for Gadu-Gadu allows remote attackers to inject arbitrary web script or HTML via (1) http:// or (2) news:// URLs, a different vulnerability than CVE-2004-1410.

[CLOSE] OSVDB ID : 12519 - Disclosed: 2004-12-13

Description:

(Description Provided by CVE) : Stack-based buffer overflow in the code that sends images in Gadu-Gadu allows remote attackers to execute arbitrary code via a large image filename.

[CLOSE] OSVDB ID : 21016 - Disclosed: 2005-11-21

Description:

A remote overflow exists in Gadu-Gadu. The online chat system fails to check the length of the file name of images, resulting in a stack based buffer overflow. With a specially crafted request, an attacker can cause an overflow of 9 bytes resulting in a loss of availability.

[CLOSE] OSVDB ID : 12520 - Disclosed: 2004-12-13

Description:

(Description Provided by CVE) : Gadu-Gadu allows remote attackers to bypass the "image send" option by sending a very small image file, which could be used in conjunction with image-related vulnerabilities.

[CLOSE] OSVDB ID : 9901 - Disclosed: 2004-09-12

Description:

A remote overflow exists in Gadu Gadu Instant Messenger. The Gadu Gadu Instant Messenger fails to properly check GG_SEND_MSG packet and the subsequent GG_MSG_IMAGE_REPLY resulting in a heap memory overflow. With a specially crafted request, an attacker can run arbitrary code in the context of the current user resulting in a loss of integrity.

[CLOSE] OSVDB ID : 19228 - Disclosed: 2004-09-23

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 12525 - Disclosed: 2004-12-17

Description:

(Description Provided by CVE) : Gadu-Gadu build 155 and earlier allows remote attackers to cause a denial of service (infinite loop) via a message that contains an image whose filename does not start with restricted characters.

[CLOSE] OSVDB ID : 15978 - Disclosed: 2004-12-20

Description:

(Description Provided by CVE) : Gadu-Gadu 6.1 build 156 allows remote attackers to cause a denial of service (application hang) via a message that contains many special strings that are converted to images.

[CLOSE] OSVDB ID : 21015 - Disclosed: 2005-11-21

Description:

Gadu-Gadu contains a flaw that may allow a remote denial of service. The issue is triggered when MS-DOS filenames ("LPT:", "AUX:") are used for image processing, and will result in loss of availability for the service.

[CLOSE] OSVDB ID : 12524 - Disclosed: 2004-12-17

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in Gadu-Gadu build 155 and earlier allows remote attackers to inject arbitrary web script via a URL, which is echoed in a popup window that displays a parsing error message, a different vulnerability than CVE-2004-1229.

[CLOSE] OSVDB ID : 76115 - Disclosed: 2010-08-26

Description:

Gaestebuch contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'guestbook/gbook.php' script not properly sanitizing user input supplied to the 'script_pfad' parameter. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.

[CLOSE] OSVDB ID : 43352 - Disclosed: 2008-03-01

Description:

gaestebuch Module for PHP-Nuke contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'modules.php' script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 13302 - Disclosed: 2002-05-29

Description:

(Description Provided by CVE) : showtemp.cfm for Gafware CFXImage 1.6.6 allows remote attackers to read arbitrary files via (1) a .. or (2) a C: style pathname in the FILE parameter.

[CLOSE] OSVDB ID : 5310 - Disclosed: 2004-04-08

Description:

Gaim contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when Gaim is used to check web mail on startup, world readable files are created in /tmp which will disclose sensitive information, including authentication credentials resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 33837 - Disclosed: 2007-02-22

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 18669 - Disclosed: 2005-08-10

Description:

A remote overflow exists in gaim. The program fails to validate away messages resulting in a buffer overflow. With a specially crafted away message, an attacker can cause arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 8628 - Disclosed: 2003-06-26

Description:

gaim contains a flaw that may allow a remote denial of service. The issue is triggered due to the 'buddy pounce' feature. It is possible for a remote attacker to add a buddy and to create a specially crafted buddy pounce message containing a HTML FONT SIZE tag with a value of 10,000, which causes the application to crash when the victim receives the message.

[CLOSE] OSVDB ID : 9264 - Disclosed: 2004-08-26

Description:

Gaim contains a flaw that may allow a remote denial of service. The issue is triggered when a malicious user sends an overly large content-length header value and Gaim tries to allocate buffer big enough to store the content. If value exceeds amount of available memory Gaim will crash and will result in loss of availability for the system.

[CLOSE] OSVDB ID : 8626 - Disclosed: 2001-02-08

Description:

gaim contains a flaw related to the 'toc_build_config' function in dialogs.c that may allow an attacker to cause a buffer overlow. No further details have been provided.

[CLOSE] OSVDB ID : 3734 - Disclosed: 2004-01-27

Description:

A remote overflow exists in gaim. Gaim fails to correctly parse some malformed directIM packets, resulting in a heap overflow. With a specially crafted request, an attacker can cause the execution of arbitrary code resulting in a loss of integrity.

[CLOSE] OSVDB ID : 8961 - Disclosed: 2004-08-05

Description:

A local overflow exists in gaim. The encode_spaces() function fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 8630 - Disclosed: 2002-03-03

Description:

gaim contains a flaw related to the 'g_strsplit' function in eval.c that may allow an attacker to cause a buffer overflow. No further details have been provided.

[CLOSE] OSVDB ID : 3733 - Disclosed: 2004-01-27

Description:

A remote overflow exists in Gaim. The Extract Info Field Function combines data from two tokens into a fixed-length stack buffer without properly checking the size of the resulting string, resulting in a buffer overflow. With a specially crafted set of data, an attacker can overflow the buffer and possibly execute arbitrary code on the system, resulting in a loss of integrity.

[CLOSE] OSVDB ID : 12352 - Disclosed: 2004-12-03

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 18587 - Disclosed: 2005-08-05

Description:

Gaim contains a flaw that may lead to an unauthorized password exposure. It is possible to gain access to plaintext passwords within the file accounts.xml, which may lead to a loss of confidentiality.

[CLOSE] OSVDB ID : 15276 - Disclosed: 2005-04-01

Description:

A remote overflow exists in Gaim. The 'gaim_markup_strip_html()' function fails to perform proper bounds checking resulting in a buffer overflow. By issuing a string that contains malformed HTML, a remote attacker can cause the application to crash resulting in a loss of availability.

[CLOSE] OSVDB ID : 9260 - Disclosed: 2004-08-26

Description:

A remote overflow exists in Gaim. Gaim fails to check integer length resulting in a buffer overflow. With a specially crafted request, an attacker running a malicious groupware server can execute arbitrary commands on a gaim client resulting in a loss of integrity.

[CLOSE] OSVDB ID : 3732 - Disclosed: 2004-01-27

Description:

A remote overflow exists in Gaim. The HTTP proxy (http_canread function) subsystem fails to check if the proxy sends more than 8192 bytes in a line, resulting in a buffer overflow. With a malicious proxy sending specially crafted input, an attacker can overwrite the buffer and gain control of the instruction pointer resulting in a loss of integrity.

[CLOSE] OSVDB ID : 15277 - Disclosed: 2005-04-01

Description:

Gaim contains a flaw that may allow a remote attacker to inject arbitrary Gaim markup. The issue is triggered due to multiple functions of the IRC protocol plugin. It is possible that the flaw may allow a remote attacker to inject arbitrary Gaim markups over IRC resulting in a loss of integrity.

[CLOSE] OSVDB ID : 15280 - Disclosed: 2005-04-02

Description:

(Description Provided by CVE) : The IRC protocol plugin in Gaim 1.2.0, and possibly earlier versions, allows (1) remote attackers to inject arbitrary Gaim markup via irc_msg_kick, irc_msg_mode, irc_msg_part, irc_msg_quit, (2) remote attackers to inject arbitrary Pango markup and pop up empty dialog boxes via irc_msg_invite, or (3) malicious IRC servers to cause a denial of service (application crash) by injecting certain Pango markup into irc_msg_badmode, irc_msg_banned, irc_msg_unknown, irc_msg_nochan functions.