This script is Copyright (C) 2005-2013 Tenable Network Security, Inc.
The remote Mandrake Linux host is missing one or more security
More vulnerabilities have been discovered in the gaim instant
messaging client :
A buffer overflow vulnerability was found in the way that gaim escapes
HTML, allowing a remote attacker to send a specially crafted message
to a gaim client and causing it to crash (CVE-2005-0965).
A bug was discovered in several of gaim's IRC processing functions
that fail to properly remove various markup tags within an IRC
message. This could allow a remote attacker to send specially crafted
message to a gaim client connected to an IRC server, causing it to
Finally, a problem was found in gaim's Jabber message parser that
would allow a remote Jabber user to send a specially crafted message
to a gaim client, bausing it to crash (CVE-2005-0967).
Gaim version 1.2.1 is not vulnerable to these issues and is provided
with this update.
Update the affected packages.
Risk factor :
Medium / CVSS Base Score : 6.4