Gaim
Gaim Vulnerability
| Title | AIM/ICQ away message buffer overflow |
|---|---|
| Date | 11 August 2005 |
| CVE Name | CAN-2005-2103 |
| Discovered By | Brandon Perry |
| Summary | Remote users can cause a buffer overflow |
| Description | A remote AIM or ICQ user can cause a buffer overflow in Gaim by setting an away message containing many AIM substitution strings (such as %t or %n). |
| Fixed in Version | 1.5.0 |
| Fix | The substitution function was modified to use a dynamic buffer instead of one with a fixed size. |