Vulnerability Details CVE-2005-4817
Format string vulnerability in ui.c in Textbased MSN Client (TMSNC) before 0.2.5 allows attackers to cause a denial of service and possibly execute arbitrary code via unknown attack vectors that cause format strings to be injected into the wprintw function.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.011
EPSS Ranking 77.6%
CVSS Severity
CVSS v2 Score 7.5
References
- http://secunia.com/advisories/16752
- http://sourceforge.net/project/shownotes.php?release_id=355808
- http://www.osvdb.org/displayvuln.php?osvdb_id=19311
- http://www.securityfocus.com/bid/14810
- http://www.vupen.com/english/advisories/2005/1709
- https://exchange.xforce.ibmcloud.com/vulnerabilities/22242
- http://secunia.com/advisories/16752
- http://sourceforge.net/project/shownotes.php?release_id=355808
- http://www.osvdb.org/displayvuln.php?osvdb_id=19311
- http://www.securityfocus.com/bid/14810
- http://www.vupen.com/english/advisories/2005/1709
- https://exchange.xforce.ibmcloud.com/vulnerabilities/22242
Products affected by CVE-2005-4817
-
cpe:2.3:a:tmsnc:tmsnc:0.1.0
-
cpe:2.3:a:tmsnc:tmsnc:0.1.0a
-
cpe:2.3:a:tmsnc:tmsnc:0.1.0b
-
cpe:2.3:a:tmsnc:tmsnc:0.1.1
-
cpe:2.3:a:tmsnc:tmsnc:0.1.2
-
cpe:2.3:a:tmsnc:tmsnc:0.1.3
-
cpe:2.3:a:tmsnc:tmsnc:0.1.4
-
cpe:2.3:a:tmsnc:tmsnc:0.1.5
-
cpe:2.3:a:tmsnc:tmsnc:0.2.0
-
cpe:2.3:a:tmsnc:tmsnc:0.2.0b
-
cpe:2.3:a:tmsnc:tmsnc:0.2.1
-
cpe:2.3:a:tmsnc:tmsnc:0.2.2
-
cpe:2.3:a:tmsnc:tmsnc:0.2.3
-
cpe:2.3:a:tmsnc:tmsnc:0.2.4