Gaim Vulnerability
| Title | MSN strncpy buffer overflow |
|---|
| Date | 22 August 2004 |
|---|
| CVE Name | CAN-2004-0500 |
|---|
| Discovered By | Sebastian Krahmer, SUSE Security Team |
|---|
| Summary | Possible for a remote MSN user to cause a buffer overflow. |
|---|
| Description | In two places in the MSN protocol plugins (object.c and slp.c), strncpy was used incorrectly; the size of the array was not checked before copying to it. Both bugs affect MSN's MSNSLP protocol, which is peer-to-peer, so this could potentially be easy to exploit. |
|---|
| Fixed in Version | 0.82 |
|---|
| Fix | Bounds checking was added in both places. |
|---|
Return to Index of Vulnerabilities
Gaim
