Vulnerability in Mandrakesoft Mandrake_linux
CVE-2005-0473
The HTML parsing functions in Gaim before 1.1.3 allow remote attackers to cause a denial of service (application crash) via malformed HTML that causes "an invalid memory access," a different vulnerability than CVE-2005-0208.
EPSS: 0.035 (87.6th percentile) — read the EPSS interpretation.
Affected products
- Mandrakesoft Mandrake_linux — versions 10.0, 10.1
- Mandrakesoft Mandrake_linux_corporate_server — versions 3.0
- Rob_flynn Gaim — versions 1.0, 1.0.1, 1.1.1
- Redhat Enterprise_linux — versions 4.0
- Redhat Enterprise_linux_desktop — versions 4.0
- N/a — versions n/a
References
- secalert@redhat.com (x_refsource_OVAL, signature, vdb-entry)
- secalert@redhat.com (x_refsource_FEDORA, vendor-advisory)
- secalert@redhat.com (US Government Resource, x_refsource_CERT-VN, Patch, Third Party Advisory, third-party-advisory)
- secalert@redhat.com (vendor-advisory, x_refsource_GENTOO)
- secalert@redhat.com (vdb-entry, x_refsource_XF)
- secalert@redhat.com (mailing-list, x_refsource_BUGTRAQ)
- secalert@redhat.com (vendor-advisory, x_refsource_MANDRAKE)
- secalert@redhat.com (vendor-advisory, x_refsource_CONECTIVA)
- secalert@redhat.com (x_refsource_CONFIRM)
- secalert@redhat.com (x_refsource_SECUNIA, third-party-advisory)