Gaim.AIM-ICQ.Away.Messages.Buffer.Overflow
Description
This indicates an attack attempt to exploit a buffer-overflow vulnerability in Gaim.
The vulnerability is caused by an error when the vulnerable software handles a specially-crafted away message. It allows a remote attacker to execute arbitrary code via a specially-crafted "away" message with overly long format string substitution.
Affected Products
Gaim version 1.4.0 and prior
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Denial of Service: Remote attackers can crash vulnerable systems.
Recommended Actions
Upgrade to Gaim version 1.5.0 :
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |