PT-2005-5588 · Gaim+3 · Gaim+3

Published

1970-01-01

Updated

2018-10-19

CVE-2005-2370

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions ekg versions prior to 1.6rc2 Gaim versions prior to 1.5.0 libgadu (affected versions not specified)

Description The issue is related to multiple memory alignment errors in libgadu, which can be exploited by remote attackers to cause a denial of service (bus error) on certain architectures, such as SPARC, via an incoming message. The vulnerability can lead to disruption of protected information and can be exploited remotely.

Recommendations For ekg versions prior to 1.6rc2, update to version 1.6rc2 or later. For Gaim versions prior to 1.5.0, update to version 1.5.0 or later. For libgadu, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-399

Related Identifiers

BDU:2015-03132

BDU:2015-03133

CVE-2005-2370

DSA-1318-1

DSA-769-1

DSA-813-1

DTSA-2-1

DTSA-5-1

RHSA-2005:639

RHSA-2005_627

RHSA-2005_639

Affected Products

Gaim

Red Hat

Ekg

Libgadu

PT-2005-5588 · Gaim+3 · Gaim+3

CVE-2005-2370

Weakness Enumeration

Related Identifiers

Affected Products

References · 26