FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

gaim -- MSN remote DoS vulnerability

Affected packages
gaim < 1.3.0
ja-gaim < 1.3.0
ko-gaim < 1.3.0
ru-gaim < 1.3.0

Details

VuXML ID ad5e70bb-c429-11d9-ac59-02061b08fc24
Discovery 2005-05-10
Entry 2005-05-14

The GAIM team reports:

Potential remote denial of service bug resulting from not checking a pointer for non-NULL before passing it to strncmp, which results in a crash. This can be triggered by a remote client sending an SLP message with an empty body.

References

CVE Name CVE-2005-1262
URL http://gaim.sourceforge.net/security/index.php?id=17