CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2005-1852

HIGH
7.5
CVSS Severity Score
EPSS Score0.1180%
EPSS Percentile20.96th
Published2005年7月26日
Last Modified2026年4月16日

Vulnerability Description

Multiple integer overflows in libgadu, as used in Kopete in KDE 3.2.3 to 3.4.1, ekg before 1.6rc3, GNU Gadu, CenterICQ, Kadu, and other packages, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an incoming message.

Affected Platforms (CPE)

📦
Ekg

Ekg

= 1.0
📦
Ekg

Ekg

= 1.0_rc2
📦
Ekg

Ekg

= 1.0_rc3
📦
Ekg

Ekg

= 1.1
📦
Ekg

Ekg

= 1.1_rc1
📦
Ekg

Ekg

= 1.1_rc2
📦
Ekg

Ekg

= 1.3
📦
Ekg

Ekg

= 1.4
📦
Ekg

Ekg

= 1.5
📦
Ekg

Ekg

= 1.5_rc1
📦
Ekg

Ekg

= 1.5_rc2
💻
Kde

Kde

= 3.2.3
💻
Kde

Kde

= 3.3
💻
Kde

Kde

= 3.3.1
💻
Kde

Kde

= 3.3.2
💻
Kde

Kde

= 3.4
💻
Kde

Kde

= 3.4.0
💻
Kde

Kde

= 3.4.1
📦
Centericq

Centericq

All versions
📦
Kadu

Kadu

All versions

References & Advisories

🔗 http://lwn.net/Articles/144724/
🔗 http://marc.info/?l=bugtraq&m=112198499417250&w=2
🔗 http://secunia.com/advisories/16140
🔗 http://secunia.com/advisories/16155
🔗 http://secunia.com/advisories/16211
🔗 http://secunia.com/advisories/16242
🔗 http://security.gentoo.org/glsa/glsa-200507-23.xml
🔗 http://www.gentoo.org/security/en/glsa/glsa-200507-26.xml

相關漏洞威脅

CVE-2005-185010.0

Certain contributed scripts for ekg Gadu Gadu client 1.5 and earlier create temporary files insecurely, with unknown impact and at...

CVE-2005-185110.0

A certain contributed script for ekg Gadu Gadu client 1.5 and earlier allows attackers to execute shell commands via unknown attac...

CVE-2016-200478.4

EKG Gadu 1.9~pre+r2855-3+b1 contains a local buffer overflow vulnerability in the username handling that allows local attackers to...

CVE-2005-23697.5

Multiple integer signedness errors in libgadu, as used in ekg before 1.6rc2 and other packages, may allow remote attackers to caus...