Gaim Vulnerability
| Title | Local hostname resolution buffer overflow |
|---|
| Date | 26 August 2004 |
|---|
| CVE Name | CAN-2004-0785 |
|---|
| Discovered By | Sean ("infamous42md") |
|---|
| Summary | Possible buffer overflow when resolving the hostname of the local computer. |
|---|
| Description | Buffer overflow. If the local computers host name is not in /etc/hosts, and the computer performs a DNS query to obtain it's hostname when signing on to zephyr, it could receive a reply with a hostname greater than MAXHOSTNAMELEN (generally 64 bytes). If gethostbyname() does not ensure the size of hostent->h_name is less than MAXHOSTNAMELEN, this value would be copied to a buffer that is not large enough. |
|---|
| Fixed in Version | 0.82 |
|---|
| Fix | The calls to copy the hostname were replaced with calls that check the length of the destination buffer. |
|---|
Return to Index of Vulnerabilities
Gaim
