Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:DSA-760-1
HistoryJul 18, 2005 - 12:00 a.m.

ekg - several

2005-07-1800:00:00
Google
osv.dev
7

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.003 Low

EPSS

Percentile

62.8%

JSON

Several vulnerabilities have been discovered in ekg, a console Gadu
Gadu client, an instant messaging program. The Common Vulnerabilities
and Exposures project identifies the following vulnerabilities:

  • CAN-2005-1850
    Marcin Owsiany and Wojtek Kaniewski discovered insecure temporary
    file creation in contributed scripts.

  • CAN-2005-1851
    Marcin Owsiany and Wojtek Kaniewski discovered potential shell
    command injection in a contributed script.

  • CAN-2005-1916
    Eric Romang discovered insecure temporary file creation and
    arbitrary command execution in a contributed script that can be
    exploited by a local attacker.

The old stable distribution (woody) does not contain an ekg package.

For the stable distribution (sarge) these problems have been fixed in
version 1.5+20050411-4.

For the unstable distribution (sid) these problems have been fixed in
version 1.5+20050712+1.6rc2-1.

We recommend that you upgrade your ekg package.

CPENameOperatorVersion
ekgeq1:1.5+20050411-3

Related

openvas 7
debian 2
securityvulns 3
nessus 5
debiancve 3
cve 3
ubuntucve 3
ubuntu 1
freebsd 2
openvas
openvas
Debian Security Advisory DSA 760-1 (ekg)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-760-1)
2008-01-17 00:00:00
FreeBSD Ports: gaim, ja-gaim, ko-gaim, ru-gaim
2008-09-04 00:00:00
debian
debian
[SECURITY] [DSA 760-1] New ekg packages fix several vulnerabilities
2005-07-18 17:35:33
[SECURITY] [DSA 760-1] New ekg packages fix several vulnerabilities
2005-07-18 17:35:33
securityvulns
securityvulns
[SECURITY] [DSA 760-1] New ekg packages fix several vulnerabilities
2005-07-19 00:00:00
Multiple vulnerabilities in libgadu and ekg package
2005-07-22 00:00:00
[Full-disclosure] ekg insecure temporary file creation and arbitrary code execution
2005-07-05 00:00:00
nessus
nessus
Debian DSA-760-1 : ekg - several vulnerabilities
2005-07-19 00:00:00
Ubuntu 5.04 : ekg vulnerabilities (USN-162-1)
2006-01-15 00:00:00
FreeBSD : ekg -- insecure temporary file creation (9a035a56-eff0-11d9-8310-0001020eed82)
2005-08-01 00:00:00
debiancve
debiancve
CVE-2005-1850
2005-07-19 04:00:00
CVE-2005-1916
2005-07-06 04:00:00
CVE-2005-1851
2005-07-19 04:00:00
cve
cve
CVE-2005-1850
2005-07-19 04:00:00
CVE-2005-1916
2005-07-06 04:00:00
CVE-2005-1851
2005-07-19 04:00:00
ubuntucve
ubuntucve
CVE-2005-1850
2005-07-19 00:00:00
CVE-2005-1851
2005-07-19 00:00:00
CVE-2005-1916
2005-07-06 00:00:00
ubuntu
ubuntu
ekg and Gadu library vulnerabilities
2005-08-09 00:00:00
freebsd
freebsd
ekg -- insecure temporary file creation
2005-07-05 00:00:00
libgadu -- multiple vulnerabilities
2005-07-21 00:00:00

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.003 Low

EPSS

Percentile

62.8%

JSON
Related for OSV:DSA-760-1
openvas7debian2securityvulns3nessus5debiancve3cve3ubuntucve3ubuntu1freebsd2