CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-6411

Multiple buffer overflows in the HandleEmotsConfig function in the GG Client in Gadu-Gadu 7.7 Build 3669 allow user-assisted remote attackers to execute arbitrary code or cause a denial of service (gg.exe process crash) via a long string in an emots.txt file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.03

EPSS Ranking 85.8%

CVSS Severity

CVSS v2 Score 4.3

References

http://securityreason.com/securityalert/3455
http://vexillium.org/advisory_eng.txt
http://www.securityfocus.com/archive/1/484077/100/200/threaded
http://www.securityfocus.com/archive/1/484086/100/200/threaded
http://www.securityfocus.com/archive/1/484105/100/200/threaded
http://www.securityfocus.com/archive/1/484119/100/200/threaded
http://www.securityfocus.com/archive/1/484122/100/200/threaded
http://www.securityfocus.com/archive/1/484126/100/200/threaded
http://www.securityfocus.com/archive/1/484607/100/0/threaded
http://securityreason.com/securityalert/3455
http://vexillium.org/advisory_eng.txt
http://www.securityfocus.com/archive/1/484077/100/200/threaded
http://www.securityfocus.com/archive/1/484086/100/200/threaded
http://www.securityfocus.com/archive/1/484105/100/200/threaded
http://www.securityfocus.com/archive/1/484119/100/200/threaded
http://www.securityfocus.com/archive/1/484122/100/200/threaded
http://www.securityfocus.com/archive/1/484126/100/200/threaded
http://www.securityfocus.com/archive/1/484607/100/0/threaded

Products affected by CVE-2007-6411

Gadu-Gadu » Gadu-Gadu Instant Messenger » Version: 7.7

cpe:2.3:a:gadu-gadu:gadu-gadu_instant_messenger:7.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-6411

Products

Pricing

Contact Us