This script is Copyright (C) 2005-2015 Tenable Network Security, Inc.
The remote Red Hat host is missing a security update.
An updated gaim package that fixes a buffer overflow security issue is
This update has been rated as having critical security impact by the
Red Hat Security Response Team.
Gaim is an Internet Instant Messaging client.
A heap based buffer overflow issue was discovered in the way Gaim
processes away messages. A remote attacker could send a specially
crafted away message to a Gaim user logged into AIM or ICQ which could
result in arbitrary code execution. The Common Vulnerabilities and
Exposures project (cve.mitre.org) has assigned the name CVE-2005-2103
to this issue.
Users of gaim are advised to upgrade to this updated package, which
contains backported patches and is not vulnerable to this issue.
See also :
Update the affected gaim package.
Risk factor :
High / CVSS Base Score : 7.5
CVSS Temporal Score : 6.5
Public Exploit Available : false