|
|
|
Vulnerability Note VU#527142Gaim contains a buffer overflow vulnerability in the yahoo_packet_read() functionOverviewThere is a buffer overflow vulnerability in the Gaim yahoo_packet_read() function, which could allow an unauthenticated, remote attacker to execute arbitrary code.I. DescriptionGaim is a multi-protocol instant messenger available for a number of operating systems. It supports a variety of instant messaging protocols, including the Yahoo Messenger (YMSG) protocol. There is a buffer overflow vulnerability in the yahoo_packet_read() function. When parsing a YMSG packet, the yahoo_packet_read() function fails to perform adequate bounds checking on the keyname value. By sending a specially crafted YMSG packet containing a large keyname value to a vulnerable system, an unauthenticated, remote attacker could execute arbitrary code.II. ImpactAn unauthenticated, remote attacker could execute arbitrary code with the privileges of the vulnerable process.III. SolutionUpgradeUpgrade to Gaim version 0.76 or later.
References
This vulnerability was publicly reported by Stefan Esser of e-matters. This document was written by Damon Morda.
If you have feedback, comments, or additional information about this vulnerability, please send us
email. |
||||||||||||||||||||||||||||||||||||||
|
|||||||||||||||||||||||||||||||||||||||
Get Adobe Reader