Unrated severityNVD Advisory· Published Nov 29, 2005· Updated Apr 16, 2026

CVE-2005-3891

Description

Stack-based buffer overflow in Gadu-Gadu 7.20 allows remote attackers to cause a denial of service (crash) via an image filename between exactly 192 to 200 characters, which does not account for the "imgcache\" string that is added to the end of the buffer.

Affected products

Gadu Gadu/Gadu Gadu Instant Messenger
cpe:2.3:a:gadu-gadu:gadu-gadu_instant_messenger:7.20:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/17597/nvdPatchVendor Advisory
archives.neohapsis.com/archives/fulldisclosure/2005-11/0658.htmlnvdVendor Advisory
marc.infonvd
www.osvdb.org/21016nvd
www.securityfocus.com/bid/15520/nvd
exchange.xforce.ibmcloud.com/vulnerabilities/23149nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000