KLA10171
Multiple vulnerabilities in Gadu-Gadu
Обновлено: 17/06/2019
Дата обнаружения
29/11/2005
Уровень угрозы
Critical
Описание

Multiple serious vulnerabilities have been found in Gadu-Gadu. Malicious can use these vulnerabilities to obtain sensitive information or cause denial of service Below is a complete list of vulnerabilities

  1. Vectors related to Easycall can be exploited remotely via outgoing calls;
  2. A buffer overflow can be exploited remotely via a specially designed image filename;
  3. Vectors related to unknown activities can be exploited remotely via a specially designed web page;
  4. Vectors related to unknown activities can be exploited remotely via specially designed DCC packets;
  5. Improper device name handling can be exploited remotely via a specially designed filename.
Пораженные продукты

Gadu-Gadu version 7.20

Решение

Update to latest version

Оказываемое влияние
?
OSI 
[?]

DoS 
[?]
Связанные продукты
Gadu-Gadu
CVE-IDS
CVE-2005-38875.4High
CVE-2005-38897.8Critical
CVE-2005-38887.8Critical
CVE-2005-38917.8Critical
CVE-2005-38907.8Critical
CVE-2005-38925.0Critical