Rob Flynn: >> Gaim >> 0.57 Security Vulnerabilities
The URL handler in the manual browser option for Gaim before 0.59.1 allows remote attackers to execute arbitrary script via shell metacharacters in a link.
CVSS Score
7.5
EPSS Score
0.05
Published
2002-09-24
Gaim 0.57 stores sensitive information in world-readable and group-writable files in the /tmp directory, which allows local users to access MSN web email accounts of other users who run Gaim by reading authentication information from the files.
CVSS Score
2.1
EPSS Score
0.001
Published
2002-05-29
Page 2