CVE-2004-0006

Name of the Vulnerable Software and Affected Versions Gaim versions 0.75 and earlier Ultramagnetic versions prior to 0.81

Description The issue concerns multiple buffer overflows that can be triggered by remote attackers, potentially leading to a denial of service or the execution of arbitrary code. The overflows can occur through various means, including cookies in a Yahoo web connection, a long name parameter in the Yahoo login web page, a long value parameter in the Yahoo login page, a YMSG packet, the URL parser, and HTTP proxy connect.

Recommendations For Gaim versions 0.75 and earlier, update to a version later than 0.75 to resolve the issue. For Ultramagnetic versions prior to 0.81, update to version 0.81 or later to resolve the issue.