PT-2005-5588 · Gaim+3 · Gaim+3

Publicado

1970-01-01

Atualizado

2018-10-19

CVE-2005-2370

CVSS v2.0

5.0

Média

Vetor

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions ekg versions prior to 1.6rc2 Gaim versions prior to 1.5.0 libgadu (affected versions not specified)

Description The issue is related to multiple memory alignment errors in libgadu, which can be exploited by remote attackers to cause a denial of service (bus error) on certain architectures, such as SPARC, via an incoming message. The vulnerability can lead to disruption of protected information and can be exploited remotely.

Recommendations For ekg versions prior to 1.6rc2, update to version 1.6rc2 or later. For Gaim versions prior to 1.5.0, update to version 1.5.0 or later. For libgadu, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-399

Identificadores relacionados

BDU:2015-03132

BDU:2015-03133

CVE-2005-2370

DSA-1318-1

DSA-769-1

DSA-813-1

DTSA-2-1

DTSA-5-1

RHSA-2005:639

RHSA-2005_627

RHSA-2005_639

Produtos afetados

Gaim

Red Hat

Ekg

Libgadu

PT-2005-5588 · Gaim+3 · Gaim+3

CVE-2005-2370

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 26