Vulnerabilities > Gadu Gadu
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-01-10 | CVE-2004-1232 | Remote Security vulnerability in Gadu-Gadu Instant Messenger Stack-based buffer overflow in the code that sends images in Gadu-Gadu allows remote attackers to execute arbitrary code via a large image filename. | 10.0 |
| 2005-01-10 | CVE-2004-1231 | Directory Traversal vulnerability in Gadu-Gadu Instant Messenger Directory traversal vulnerability in Gadu-Gadu allows remote attackers to read arbitrary files via .. | 5.0 |
| 2005-01-10 | CVE-2004-1230 | Information Disclosure vulnerability in Gadu-Gadu Instant Messenger Gadu-Gadu allows remote attackers to gain sensitive information and read files from the _cache directory of other users via a DCC connection and a CTCP packet that contains a 1 as the type and a 4 as the subtype. | 5.0 |
| 2005-01-10 | CVE-2004-1229 | Remote vulnerability in Gadu-Gadu Cross-site scripting vulnerability in the parser for Gadu-Gadu allows remote attackers to inject arbitrary web script or HTML via (1) http:// or (2) news:// URLs, a different vulnerability than CVE-2004-1410. | 7.5 |
| 2004-12-31 | CVE-2004-2530 | Visual truncation vulnerability in Gadu-Gadu allows remote attackers to spoof the file extension on transmitted files via a filename with a large number of spaces followed by the real extension, which is not displayed in the dialog box. | 2.6 |
| 2004-12-31 | CVE-2004-2529 | Remote vulnerability in Gadu-Gadu Gadu-Gadu allows remote attackers to bypass the "image send" option by sending a very small image file, which could be used in conjunction with image-related vulnerabilities. | 5.0 |
| 2004-12-31 | CVE-2004-1414 | Denial-Of-Service vulnerability in Gadu-Gadu Instant Messenger 6.1Build156 Gadu-Gadu 6.1 build 156 allows remote attackers to cause a denial of service (application hang) via a message that contains many special strings that are converted to images. | 5.0 |
| 2004-12-31 | CVE-2004-1411 | Remote Input Validation And Denial Of Service vulnerability in Gadu-Gadu Gadu-Gadu build 155 and earlier allows remote attackers to cause a denial of service (infinite loop) via a message that contains an image whose filename does not start with restricted characters. | 2.6 |
| 2004-12-31 | CVE-2004-1410 | Remote Input Validation And Denial Of Service vulnerability in Gadu-Gadu Cross-site scripting (XSS) vulnerability in Gadu-Gadu build 155 and earlier allows remote attackers to inject arbitrary web script via a URL, which is echoed in a popup window that displays a parsing error message, a different vulnerability than CVE-2004-1229. network gadu-gadu | 4.3 |
| 2004-09-12 | CVE-2004-1676 | Remote Heap Overflow vulnerability in Gadu-Gadu Instant Messenger 6.0/6.0Build149 Heap-based buffer overflow in the image sending feature in Gadu-Gadu 6.0 build 149 allows remote attackers to execute arbitrary code via a crafted GG_MSG_IMAGE_REPLY message. | 7.5 |