CVE-2014-3775

2014-05-2211:14:15

CWE-20

[email protected]

web.nvd.nist.gov

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.6

Confidence

High

EPSS

0.021

Percentile

89.3%

JSON

libgadu before 1.11.4 and 1.12.0 before 1.12.0-rc3, as used in Pidgin and other products, allows remote Gadu-Gadu file relay servers to cause a denial of service (memory overwrite) or possibly execute arbitrary code via a crafted message.

Affected configurations

Nvd

Node

libgadulibgaduRange≤1.11.4

libgadulibgaduMatch1.12.0rc1

libgadulibgaduMatch1.12.0rc2

libgadulibgaduMatch1.12.0rc3

VendorProductVersionCPE
libgadulibgadu*cpe:2.3:a:libgadu:libgadu:*:*:*:*:*:*:*:*
libgadulibgadu1.12.0cpe:2.3:a:libgadu:libgadu:1.12.0:rc1:*:*:*:*:*:*
libgadulibgadu1.12.0cpe:2.3:a:libgadu:libgadu:1.12.0:rc2:*:*:*:*:*:*
libgadulibgadu1.12.0cpe:2.3:a:libgadu:libgadu:1.12.0:rc3:*:*:*:*:*:*

Vendor	Product	Version	CPE
libgadu	libgadu	*	cpe:2.3:a:libgadu:libgadu::::::::
libgadu	libgadu	1.12.0	cpe:2.3:a:libgadu:libgadu:1.12.0:rc1::::::
libgadu	libgadu	1.12.0	cpe:2.3:a:libgadu:libgadu:1.12.0:rc2::::::
libgadu	libgadu	1.12.0	cpe:2.3:a:libgadu:libgadu:1.12.0:rc3::::::