Gaim contains a flaw in the processing of certain packets that may cause a denial of service.
From the Gaim project:
Gaim is a multi-protocol instant messaging (IM) client for Linux, BSD, MacOS X, and Windows. It is compatible with AIM and ICQ (Oscar protocol), MSN Messenger, Yahoo!, IRC, Jabber, Gadu-Gadu, SILC, GroupWise Messenger, and Zephyr networks
A remote attacker may be able to cause Gaim and the local system to become unresponsive or to cause Gaim to crash.
Apply an update
As a best practice and potential workaround, users should not accept unexpected messages from unknown sources.
Thanks to the Gaim project for reporting this vulnerability.
This document was written by Ken MacInnis based primarily on information from the Gaim project.
|Date First Published:||2005-02-21|
|Date Last Updated:||2005-02-22 14:21 UTC|