KLA10171
Multiple vulnerabilities in Gadu-Gadu
Updated: 05/22/2020
Detect date
?
11/29/2005
Severity
?
Critical
Description

Multiple serious vulnerabilities have been found in Gadu-Gadu. Malicious can use these vulnerabilities to obtain sensitive information or cause denial of service Below is a complete list of vulnerabilities

  1. Vectors related to Easycall can be exploited remotely via outgoing calls;
  2. A buffer overflow can be exploited remotely via a specially designed image filename;
  3. Vectors related to unknown activities can be exploited remotely via a specially designed web page;
  4. Vectors related to unknown activities can be exploited remotely via specially designed DCC packets;
  5. Improper device name handling can be exploited remotely via a specially designed filename.
Affected products

Gadu-Gadu version 7.20

Solution

Update to latest version

Impacts
?
OSI 
[?]

DoS 
[?]
Related products
Gadu-Gadu
CVE-IDS
?
CVE-2005-38875.4High
CVE-2005-38897.8Critical
CVE-2005-38887.8Critical
CVE-2005-38917.8Critical
CVE-2005-38907.8Critical
CVE-2005-38925.0Critical