|
|
CVE Reference: CVE-2005-3887 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2005-3887 |
|
|
Description: Gadu-Gadu 7.20 does not properly handle MS-DOS device names in filenames, which allows remote attackers to (1) cause a denial of service (hang) via an image filename of AUX: sent twice (hang), or (2) write to the LPT1 port via a filename of "LPT1:". |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/23148 SAID Secunia Advisory: SA17597 OSVDB 21015 FULLDISC http://archives.neohapsis.com/archives/fulldisclosure/2005-11/0658.html BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=113261573023912&w=2 BID 15520 |
|
| Return to the previous page. |
