MidnightBSD

Advisories for gadu-gadu

CVE-2004-1229 HIGH

Cross-site scripting vulnerability in the parser for Gadu-Gadu allows remote attackers to inject arbitrary web script or HTML via (1) http:// or (2) news:// URLs, a different vulnerability than CVE-2004-1410.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
gadu-gadu gadu-gadu_instant_messenger *
CVE-2004-1230 MEDIUM

Gadu-Gadu allows remote attackers to gain sensitive information and read files from the _cache directory of other users via a DCC connection and a CTCP packet that contains a 1 as the type and a 4 as the subtype.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
gadu-gadu gadu-gadu_instant_messenger *
CVE-2004-1231 MEDIUM

Directory traversal vulnerability in Gadu-Gadu allows remote attackers to read arbitrary files via .. (dot dot) sequences in a DCC connection with a CTCP packet that contains a 1 as the type and a 4 as the subtype.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
gadu-gadu gadu-gadu_instant_messenger *
CVE-2004-1232 HIGH

Stack-based buffer overflow in the code that sends images in Gadu-Gadu allows remote attackers to execute arbitrary code via a large image filename.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
gadu-gadu gadu-gadu_instant_messenger *
CVE-2004-1233 MEDIUM

Integer overflow in Gadu-Gadu allows remote attackers to cause a denial of service (disk consumption) via a user packet to the DCC file transfer capability with an invalid file length.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
gadu-gadu gadu-gadu_instant_messenger *
CVE-2004-1410 MEDIUM

Cross-site scripting (XSS) vulnerability in Gadu-Gadu build 155 and earlier allows remote attackers to inject arbitrary web script via a URL, which is echoed in a popup window that displays a parsing error message, a different vulnerability than CVE-2004-1229.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
gadu-gadu gadu-gadu_instant_messenger 6.0_build151
gadu-gadu gadu-gadu_instant_messenger 6.0_build150
gadu-gadu gadu-gadu_instant_messenger 6.0_build155
gadu-gadu gadu-gadu_instant_messenger 6.0_build154
gadu-gadu gadu-gadu_instant_messenger 6.0_build153
gadu-gadu gadu-gadu_instant_messenger 6.0_build149
gadu-gadu gadu-gadu_instant_messenger 6.0_build152
CVE-2004-1411 LOW

Gadu-Gadu build 155 and earlier allows remote attackers to cause a denial of service (infinite loop) via a message that contains an image whose filename does not start with restricted characters.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
gadu-gadu gadu-gadu_instant_messenger 6.0_build151
gadu-gadu gadu-gadu_instant_messenger 6.0_build150
gadu-gadu gadu-gadu_instant_messenger 6.0_build155
gadu-gadu gadu-gadu_instant_messenger 6.0_build154
gadu-gadu gadu-gadu_instant_messenger 6.0_build153
gadu-gadu gadu-gadu_instant_messenger 6.0_build149
gadu-gadu gadu-gadu_instant_messenger 6.0_build152
CVE-2004-1414 MEDIUM

Gadu-Gadu 6.1 build 156 allows remote attackers to cause a denial of service (application hang) via a message that contains many special strings that are converted to images.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
gadu-gadu gadu-gadu_instant_messenger 6.1_build156
CVE-2004-1676 HIGH

Heap-based buffer overflow in the image sending feature in Gadu-Gadu 6.0 build 149 allows remote attackers to execute arbitrary code via a crafted GG_MSG_IMAGE_REPLY message.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
gadu-gadu gadu-gadu_instant_messenger 6.0
gadu-gadu gadu-gadu_instant_messenger 6.0_build149
CVE-2004-2529 MEDIUM

Gadu-Gadu allows remote attackers to bypass the "image send" option by sending a very small image file, which could be used in conjunction with image-related vulnerabilities.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
gadu-gadu gadu-gadu_instant_messenger 6.0_build151
gadu-gadu gadu-gadu_instant_messenger 6.0_build150
gadu-gadu gadu-gadu_instant_messenger 6.0
gadu-gadu gadu-gadu_instant_messenger 6.0_build154
gadu-gadu gadu-gadu_instant_messenger 6.0_build153
gadu-gadu gadu-gadu_instant_messenger 6.0_build149
gadu-gadu gadu-gadu_instant_messenger 6.0_build152
CVE-2005-3887 MEDIUM

Gadu-Gadu 7.20 does not properly handle MS-DOS device names in filenames, which allows remote attackers to (1) cause a denial of service (hang) via an image filename of AUX: sent twice (hang), or (2) write to the LPT1 port via a filename of "LPT1:".

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
gadu-gadu gadu-gadu_instant_messenger 7.20
CVE-2005-3888 HIGH

Memory leak in Gadu-Gadu 7.20 allows remote attackers to cause a denial of service via multiple DCC packets with a code other than 2 and a large size field, which allocates memory for the packet but does not free it after the packet has been dropped.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
gadu-gadu gadu-gadu_instant_messenger 7.20
CVE-2005-3890 HIGH

Gadu-Gadu 7.20 allows remote attackers to cause a denial of service (crash and configuration loss) via a page with a large number of gg: URIs.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
gadu-gadu gadu-gadu_instant_messenger 7.20
CVE-2005-3891 HIGH

Stack-based buffer overflow in Gadu-Gadu 7.20 allows remote attackers to cause a denial of service (crash) via an image filename between exactly 192 to 200 characters, which does not account for the "imgcache\" string that is added to the end of the buffer.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
gadu-gadu gadu-gadu_instant_messenger 7.20
CVE-2005-3892 MEDIUM

Gadu-Gadu 7.20 allows remote attackers to eavesdrop on a user via a web page that accesses the EasycallLite.oce ActiveX control, which can initiate an outgoing phone call and listen to the microphone.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
gadu-gadu gadu-gadu_instant_messenger 7.20