CVE
- Id
- 5377
- CVE No.
- CVE-2002-0989
- Status
- Entry
- Description
- The URL handler in the manual browser option for Gaim before 0.59.1 allows remote attackers to execute arbitrary script via shell metacharacters in a link.
- Phase
- Votes
- Comments
Related CVE References
| Id | CVE Id | CVE No. | Reference | Actions |
|---|---|---|---|---|
| 28953 | 5377 | CVE-2002-0989 | CONFIRM:http://gaim.sourceforge.net/ChangeLog | View |
| 28954 | 5377 | CVE-2002-0989 | DEBIAN:DSA-158 | View |
| 28955 | 5377 | CVE-2002-0989 | URL:http://www.debian.org/security/2002/dsa-158 | View |
| 28956 | 5377 | CVE-2002-0989 | CONFIRM:http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=72728 | View |
| 28957 | 5377 | CVE-2002-0989 | MANDRAKE:MDKSA-2002:054 | View |
| 28958 | 5377 | CVE-2002-0989 | URL:http://frontal2.mandriva.com/security/advisories?name=MDKSA-2002:054 | View |
| 28959 | 5377 | CVE-2002-0989 | CONECTIVA:CLA-2002:521 | View |
| 28960 | 5377 | CVE-2002-0989 | URL:http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000521 | View |
| 28961 | 5377 | CVE-2002-0989 | HP:HPSBTL0209-067 | View |
| 28962 | 5377 | CVE-2002-0989 | URL:http://online.securityfocus.com/advisories/4471 | View |
| 28963 | 5377 | CVE-2002-0989 | FREEBSD:FreeBSD-SN-02:06 | View |
| 28964 | 5377 | CVE-2002-0989 | URL:ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SN-02:06.asc | View |
| 28965 | 5377 | CVE-2002-0989 | REDHAT:RHSA-2002:189 | View |
| 28966 | 5377 | CVE-2002-0989 | URL:http://www.redhat.com/support/errata/RHSA-2002-189.html | View |
| 28967 | 5377 | CVE-2002-0989 | REDHAT:RHSA-2002:190 | View |
| 28968 | 5377 | CVE-2002-0989 | URL:http://www.redhat.com/support/errata/RHSA-2002-190.html | View |
| 28969 | 5377 | CVE-2002-0989 | REDHAT:RHSA-2002:191 | View |
| 28970 | 5377 | CVE-2002-0989 | URL:http://www.redhat.com/support/errata/RHSA-2002-191.html | View |
| 28971 | 5377 | CVE-2002-0989 | REDHAT:RHSA-2003:156 | View |
| 28972 | 5377 | CVE-2002-0989 | URL:http://www.redhat.com/support/errata/RHSA-2003-156.html | View |
| 28973 | 5377 | CVE-2002-0989 | BUGTRAQ:20020827 GLSA: gaim | View |
| 28974 | 5377 | CVE-2002-0989 | URL:http://marc.info/?l=bugtraq&m=103046442403404&w=2 | View |
| 28975 | 5377 | CVE-2002-0989 | BID:5574 | View |
| 28976 | 5377 | CVE-2002-0989 | URL:http://www.securityfocus.com/bid/5574 | View |
| 28977 | 5377 | CVE-2002-0989 | XF:gaim-url-handler-command-execution(9978) | View |
| 28978 | 5377 | CVE-2002-0989 | URL:http://www.iss.net/security_center/static/9978.php | View |
| 28979 | 5377 | CVE-2002-0989 | OSVDB:5033 | View |
Related JVN
| Id | JVN No. | Title | Summary | CVE No. | CVE Id | CVSS_v2 | CVSS_v3 | JVN URL | Actions |
|---|---|---|---|---|---|---|---|---|---|
| 63876 | JVNDB-2002-000203 | Red Hat Linux の Gaim における任意のコマンドを実行される脆弱性 | Red Hat Linux の Gaimにおいて、"Manual" オプションを選択した場合に、"Manual" ブラウザコマンドの実行時に不適切な文字列がフィルタリングされないため、悪意あるスクリプトを標的ホスト上で処理させることが可能な脆弱性が存在します。 | CVE-2002-0989 | 5377 | 7.5 | http://jvndb.jvn.jp/ja/contents/2002/JVNDB-2002-000203.html | View |
