Red Hat Bugzilla – Bug 165444
CAN-2005-2103 Gaim malformed away message remote code execution
Last modified: 2007-11-30 17:06:54 EST
+++ This bug was initially created as a clone of Bug #165402 +++
2. There is an oscar remotely exploitable crash bug. A remote AIM or ICQ user
would need to compile their own client and send a specially crafted IM
(basically an IM containing lots of %s, and flag it as an away message). It
results in a buffer overflow. A fix for this has not yet been commited to
CVS, and the issue should be fairly unknown.
The original discovery is here:
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.