VDB
CVE-2004-0008
CVE-2004-0008
PUBLISHED
CVSS 7.5 HIGH
Integer overflow in Gaim 0.74 and earlier, and Ultramagnetic before 0.81, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a directIM packet that triggers a heap-based buffer overflow.
EPSS 19.98% · 95.6th percentile
Risk Scores
CVSS 2.0
7.5
EPSS Score
19.98%
95.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| ultramagnetic | ultramagnetic | 0 |
| rob_flynn | gaim | 0 |
Timeline
- Jan 29, 2004 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
- Sep 8, 2023 EPSS Score
References
- 20040202-01-U vendor-advisory
- 20040127 [slackware-security] GAIM security update (SSA:2004-026-01) mailing-list
- DSA-434 vendor-advisory
- 20040201-01-U vendor-advisory
- RHSA-2004:032 vendor-advisory
- oval:org.mitre.oval:def:820 vdb
- 3734 vdb
- 20040126 Advisory 01/2004: 12 x Gaim remote overflows mailing-list
- oval:org.mitre.oval:def:9469 vdb
- http://ultramagnetic.sourceforge.net/advisories/001.html url
- GLSA-200401-04 vendor-advisory
- 1008850 vdb
- 20040127 Ultramagnetic Advisory #001: Multiple vulnerabilities in Gaim code mailing-list
- http://security.e-matters.de/advisories/012004.html url
- RHSA-2004:033 vendor-advisory
- MDKSA-2004:006 vendor-advisory
- 20040126 Advisory 01/2004: 12 x Gaim remote overflows mailing-list
- gaim-directim-bo(14937) vdb
- VU#779614 third-party-advisory
- CLA-2004:813 vendor-advisory
…and 2 more