This script is Copyright (C) 2004-2013 Tenable Network Security, Inc.
The remote Mandrake Linux host is missing one or more security
More vulnerabilities have been discovered in the gaim instant
messenger client. The vulnerabilities pertinent to version 0.75, which
is the version shipped with Mandrakelinux 10.0, are: installing smiley
themes could allow remote attackers to execute arbitrary commands via
shell metacharacters in the filename of the tar file that is dragged
to the smiley selector. There is also a buffer overflow in the way
gaim handles receiving very long URLs.
The provided packages have been patched to fix these problems. These
issues, amongst others, have been fixed upstream in version 0.82.
Update the affected packages.
Risk factor :
High / CVSS Base Score : 7.5