Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2010-3711
HistoryOct 28, 2010 - 12:00 a.m.

CVE-2010-3711

2010-10-2800:00:00
CWE-20
[email protected]
web.nvd.nist.gov
30
libpurple
pidgin
2.7.4
input validation
dos
crafted message

6 Medium

AI Score

Confidence

Low

4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

0.011 Low

EPSS

Percentile

84.5%

JSON

libpurple in Pidgin before 2.7.4 does not properly validate the return value of the purple_base64_decode function, which allows remote authenticated users to cause a denial of service (NULL pointer dereference and application crash) via a crafted message, related to the plugins for MSN, MySpaceIM, XMPP, and Yahoo! and the NTLM authentication support.

References

Related

debian 2
nessus 16
openvas 34
fedora 9
debiancve 1
prion 1
oraclelinux 3
seebug 1
altlinux 2
veracode 1
securityvulns 2
redhat 2
ubuntucve 1
slackware 1
ubuntu 1
centos 1
debian
debian
Subject: BSA-008 Security Update for pidgin
2010-10-22 11:19:31
Subject: BSA-008 Security Update for pidgin
2010-10-22 11:36:43
nessus
nessus
Oracle Linux 6 : pidgin (ELSA-2010-0890)
2013-07-12 00:00:00
Mandriva Linux Security Advisory : pidgin (MDVSA-2010:208)
2010-10-22 00:00:00
Scientific Linux Security Update : pidgin on SL6.x i386/x86_64
2012-08-01 00:00:00
openvas
openvas
Pidgin Libpurple 'purple_base64_decode()' Denial of Service Vulnerabilities (Windows)
2010-11-04 00:00:00
Slackware: Security Advisory (SSA:2010-305-02)
2012-09-10 00:00:00
Mandriva Update for pidgin MDVSA-2010:208 (pidgin)
2010-10-22 00:00:00
fedora
fedora
[SECURITY] Fedora 14 Update: pidgin-2.7.4-1.fc14
2010-10-29 20:43:03
[SECURITY] Fedora 14 Update: pidgin-2.7.9-1.fc14
2011-01-05 21:22:52
[SECURITY] Fedora 14 Update: pidgin-2.7.11-1.fc14
2011-03-14 10:22:15
debiancve
debiancve
CVE-2010-3711
2010-10-28 00:00:00
prion
prion
Null pointer dereference
2010-10-28 00:00:00
oraclelinux
oraclelinux
pidgin security update
2011-02-10 00:00:00
pidgin security update
2010-10-21 00:00:00
pidgin security and bug fix update
2011-05-28 00:00:00
seebug
seebug
Pidgin purple_base64_decode()ε‡½ζ•°η©ΊζŒ‡ι’ˆεΌ•η”¨ζ‹’η»ζœεŠ‘ζΌζ΄ž
2010-10-29 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 5 package pidgin-mini version 2.7.4-alt1
2010-10-21 00:00:00
Security fix for the ALT Linux 5 package pidgin-mini version 2.7.4-alt0.M50P.1
2010-11-12 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:48:55
securityvulns
securityvulns
libpurple library / Pidgin DoS
2010-10-24 00:00:00
[ MDVSA-2010:208 ] pidgin
2010-10-24 00:00:00
redhat
redhat
(RHSA-2010:0890) Moderate: pidgin security update
2010-11-16 00:00:00
(RHSA-2010:0788) Moderate: pidgin security update
2010-10-21 00:00:00
ubuntucve
ubuntucve
CVE-2010-3711
2010-10-27 00:00:00
slackware
slackware
[slackware-security] pidgin
2010-11-02 01:47:57
ubuntu
ubuntu
Pidgin vulnerabilities
2010-11-04 00:00:00
centos
centos
finch, libpurple, pidgin security update
2010-10-21 22:51:36

6 Medium

AI Score

Confidence

Low

4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

0.011 Low

EPSS

Percentile

84.5%

JSON
Related for CVE-2010-3711
debian2nessus16openvas34fedora9debiancve1prion1oraclelinux3seebug1altlinux2veracode1securityvulns2redhat2ubuntucve1slackware1ubuntu1centos1