This script is Copyright (C) 2005-2015 Tenable Network Security, Inc.
The remote Red Hat host is missing a security update.
An updated gaim package that fixes a buffer overflow security issue is
This update has been rated as having critical security impact by the
Red Hat Security Response Team.
Gaim is an Internet Instant Messaging client.
A heap based buffer overflow issue was discovered in the way Gaim
processes away messages. A remote attacker could send a specially
crafted away message to a Gaim user logged into AIM or ICQ which could
result in arbitrary code execution. The Common Vulnerabilities and
Exposures project (cve.mitre.org) has assigned the name CVE-2005-2103
to this issue.
Users of gaim are advised to upgrade to this updated package, which
contains backported patches and is not vulnerable to this issue.
See also :
Update the affected gaim package.
Risk factor :
High / CVSS Base Score : 7.5
CVSS Temporal Score : 6.5
Public Exploit Available : false
Family: Red Hat Local Security Checks
Nessus Plugin ID: 19422 ()
Bugtraq ID: 14531
CVE ID: CVE-2005-2103
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.