Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2012-2214
HistoryJul 03, 2012 - 7:55 p.m.

CVE-2012-2214

2012-07-0319:55:00
CWE-399
[email protected]
web.nvd.nist.gov
20
cve-2012-2214
libpurple
pidgin
denial of service
socks5
xmpp
remote authenticated users
application crash

5.8 Medium

AI Score

Confidence

Low

3.5 Low

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:N/I:N/A:P

0.003 Low

EPSS

Percentile

70.4%

JSON

proxy.c in libpurple in Pidgin before 2.10.4 does not properly handle canceled SOCKS5 connection attempts, which allows user-assisted remote authenticated users to cause a denial of service (application crash) via a sequence of XMPP file-transfer requests.

Related

openvas 18
freebsd 1
prion 1
nessus 11
seebug 1
debiancve 1
ubuntucve 1
fedora 5
cve 1
suse 1
altlinux 2
ubuntu 1
openvas
openvas
FreeBSD Ports: libpurple
2012-05-31 00:00:00
FreeBSD Ports: libpurple
2012-05-31 00:00:00
Pidgin MSN and XMPP Denial of Service Vulnerabilities (Windows)
2012-07-04 00:00:00
freebsd
freebsd
libpurple -- Invalid memory dereference in the XMPP protocol plug-in by processing serie of specially-crafted file transfer requests
2012-05-06 00:00:00
prion
prion
Design/Logic Flaw
2012-07-03 19:55:00
nessus
nessus
FreeBSD : libpurple -- Invalid memory dereference in the XMPP protocol plug-in by processing a series of specially crafted file transfer requests (64f8b72d-9c4e-11e1-9c94-000bcdf0a03b)
2012-05-14 00:00:00
Pidgin < 2.10.4 Multiple DoS Vulnerabilities
2012-05-31 00:00:00
Mandriva Linux Security Advisory : pidgin (MDVSA-2012:082)
2012-09-06 00:00:00
seebug
seebug
Pidgin &lt;2.10.4 XMPPๅ่ฎฎๆ–‡ไปถไผ ่พ“่ฏทๆฑ‚ๅค„็†่ฟœ็จ‹ๆ‹’็ปๆœๅŠกๆผๆดž
2012-06-05 00:00:00
debiancve
debiancve
CVE-2012-2214
2012-07-03 19:55:00
ubuntucve
ubuntucve
CVE-2012-2214
2012-07-03 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: pidgin-2.10.4-1.fc17
2012-06-03 00:02:54
[SECURITY] Fedora 17 Update: pidgin-2.10.5-1.fc17
2012-07-10 16:23:55
[SECURITY] Fedora 16 Update: pidgin-2.10.4-1.fc16
2012-06-10 01:33:09
cve
cve
CVE-2012-2323
2017-07-21 19:29:00
suse
suse
Security update for finch, libpurple and pidgin (important)
2012-06-22 19:08:37
altlinux
altlinux
Security fix for the ALT Linux 6 package pidgin version 2.10.4-alt0.M60P.1
2012-06-28 00:00:00
Security fix for the ALT Linux 6 package pidgin version 2.10.4-alt1
2012-05-18 00:00:00
ubuntu
ubuntu
Pidgin vulnerabilities
2012-07-09 00:00:00

5.8 Medium

AI Score

Confidence

Low

3.5 Low

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:N/I:N/A:P

0.003 Low

EPSS

Percentile

70.4%

JSON
Related for CVE-2012-2214
openvas18freebsd1prion1nessus11seebug1debiancve1ubuntucve1fedora5cve1suse1altlinux2ubuntu1