Vulnerability in Rob_flynn Gaim

CVE-2005-0965

The gaim_markup_strip_html function in Gaim 1.2.0, and possibly earlier versions, allows remote attackers to cause a denial of service (application crash) via a string that contains malformed HTML, which causes an out-of-bounds read.

EPSS: 0.023 (81.2th percentile) — read the EPSS interpretation.

Affected products

Rob_flynn Gaim — versions 1.2.0
N/a — versions n/a

References

secalert@redhat.com (vendor-advisory, x_refsource_MANDRAKE)
secalert@redhat.com (x_refsource_FEDORA, vendor-advisory)
secalert@redhat.com (x_refsource_OVAL, signature, vdb-entry)
secalert@redhat.com (Patch, x_refsource_SECUNIA, Vendor Advisory, third-party-advisory)
secalert@redhat.com (vdb-entry, x_refsource_BID)
secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
secalert@redhat.com (mailing-list, x_refsource_BUGTRAQ)
secalert@redhat.com (x_refsource_CONFIRM, Vendor Advisory)
secalert@redhat.com (vendor-advisory, x_refsource_SUSE)