HomeRob FlynnCVE-2005-0966

CVE-2005-0966

UNKNOWN
6.4CVSS
Published: 2005-05-02
Updated: 2025-04-03
AI Analysis

Description

The IRC protocol plugin in Gaim 1.2.0, and possibly earlier versions, allows (1) remote attackers to inject arbitrary Gaim markup via irc_msg_kick, irc_msg_mode, irc_msg_part, irc_msg_quit, (2) remote attackers to inject arbitrary Pango markup and pop up empty dialog boxes via irc_msg_invite, or (3) malicious IRC servers to cause a denial of service (application crash) by injecting certain Pango markup into irc_msg_badmode, irc_msg_banned, irc_msg_unknown, irc_msg_nochan functions.

CVSS Metrics

Vector
AV:N/AC:L/Au:N/C:N/I:P/A:P
Access Vector
network
Access Cmplx
low
Auth
none
Confidentiality
none
Integrity
partial
Availability
partial
Weaknesses
NVD-CWE-Other

Metadata

Primary Vendor
ROB_FLYNN
Published
5/2/2005
Last Modified
4/3/2025
Source
NIST NVD
Note: Verify all details with official vendor sources before applying patches.

Affected Products

rob_flynn : gaim

AI-Powered Remediation

Generate remediation guidance or a C-suite brief for this vulnerability.

Executive Intelligence Brief

View on NIST NVD
CVE-CVE-2005-0966 | UNKNOWN Severity | CVEDatabase.com | CVEDatabase.com