Lucene search
MitreCVE-2005-3891HistoryNov 29, 2005 - 9:03 p.m.
CVE-2005-3891
2005-11-2921:03:00
mitre
web.nvd.nist.gov
28
cve-2005-3891
gadu-gadu
buffer overflow
denial of service
nvd
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
7.1
Confidence
High
EPSS
0.021
Percentile
89.4%
Stack-based buffer overflow in Gadu-Gadu 7.20 allows remote attackers to cause a denial of service (crash) via an image filename between exactly 192 to 200 characters, which does not account for the "imgcache" string that is added to the end of the buffer.
Affected configurations
Node
gadu-gadugadu-gadu_instant_messengerMatch7.20
| Vendor | Product | Version | CPE |
|---|---|---|---|
| gadu-gadu | gadu-gadu_instant_messenger | 7.20 | cpe:2.3:a:gadu-gadu:gadu-gadu_instant_messenger:7.20:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2005-3891
2005-11-29 21:03:00
cvelist
cvelist
CVE-2005-3891
2005-11-29 21:00:00
kaspersky
kaspersky
KLA10171 Multiple vulnerabilities in Gadu-Gadu
2005-11-29 00:00:00
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
7.1
Confidence
High
EPSS
0.021
Percentile
89.4%
Related for CVE-2005-3891