Multiple vulnerabilities in Gadu-Gadu

Описание

Multiple serious vulnerabilities have been found in Gadu-Gadu. Malicious can use these vulnerabilities to obtain sensitive information or cause denial of service Below is a complete list of vulnerabilities

1. Vectors related to Easycall can be exploited remotely via outgoing calls;
2. A buffer overflow can be exploited remotely via a specially designed image filename;
3. Vectors related to unknown activities can be exploited remotely via a specially designed web page;
4. Vectors related to unknown activities can be exploited remotely via specially designed DCC packets;
5. Improper device name handling can be exploited remotely via a specially designed filename.

Первичный источник обнаружения

Связанные продукты

• Gadu-Gadu

Список CVE

• CVE-2005-3887
  high
• CVE-2005-3889
  critical
• CVE-2005-3888
  critical
• CVE-2005-3891
  critical
• CVE-2005-3890
  critical
• CVE-2005-3892
  critical

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com