CVE-2004-0784 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2004-0784 Interim 1 4 2023-12-09T02:24:49Z current 2021-05-30T12:30:30Z 2023-12-09T02:24:49Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2004-0784 The smiley theme functionality in Gaim before 0.82 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of the tar file that is dragged to the smiley selector. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/IXVYVUFBSSZLZPAXFKKWOGCARCUXJ6HU/#IXVYVUFBSSZLZPAXFKKWOGCARCUXJ6HU E-Mail link for SUSE-SA:2004:032 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/I6VUXGUWDAD2H5MVFKMBZNQH54H6JDOM/#I6VUXGUWDAD2H5MVFKMBZNQH54H6JDOM E-Mail link for SUSE-SA:2004:033 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/C7PSNIUXYF5NWCFW3OOCXDUSJ6C3JLWF/#C7PSNIUXYF5NWCFW3OOCXDUSJ6C3JLWF E-Mail link for SUSE-SA:2004:034 https://www.suse.com/support/security/rating/ SUSE Security Ratings The smiley theme functionality in Gaim before 0.82 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of the tar file that is dragged to the smiley selector. CVE-2004-0784 important 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P