Max CVSS | 7.8 | Min CVSS | 5.0 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2005-3887 | 5.4 |
Gadu-Gadu 7.20 does not properly handle MS-DOS device names in filenames, which allows remote attackers to (1) cause a denial of service (hang) via an image filename of AUX: sent twice (hang), or (2) write to the LPT1 port via a filename of "LPT1:".
|
20-07-2017 - 01:29 | 29-11-2005 - 21:03 | |
CVE-2005-3888 | 7.8 |
Memory leak in Gadu-Gadu 7.20 allows remote attackers to cause a denial of service via multiple DCC packets with a code other than 2 and a large size field, which allocates memory for the packet but does not free it after the packet has been dropped.
|
20-07-2017 - 01:29 | 29-11-2005 - 21:03 | |
CVE-2005-3889 | 7.8 |
Gadu-Gadu 7.20 allows remote attackers to cause a denial of service via multiple DCC packets with a code of 6 or 7, which triggers a large number of popup windows to the user and creates a large number of threads.
|
20-07-2017 - 01:29 | 29-11-2005 - 21:03 | |
CVE-2005-3890 | 7.8 |
Gadu-Gadu 7.20 allows remote attackers to cause a denial of service (crash and configuration loss) via a page with a large number of gg: URIs.
|
20-07-2017 - 01:29 | 29-11-2005 - 21:03 | |
CVE-2005-3891 | 7.8 |
Stack-based buffer overflow in Gadu-Gadu 7.20 allows remote attackers to cause a denial of service (crash) via an image filename between exactly 192 to 200 characters, which does not account for the "imgcache\" string that is added to the end of the
|
20-07-2017 - 01:29 | 29-11-2005 - 21:03 | |
CVE-2005-3892 | 5.0 |
Gadu-Gadu 7.20 allows remote attackers to eavesdrop on a user via a web page that accesses the EasycallLite.oce ActiveX control, which can initiate an outgoing phone call and listen to the microphone.
|
18-10-2016 - 03:37 | 29-11-2005 - 21:03 |