Lucene search

K
cve[email protected]CVE-2013-6482
HistoryFeb 06, 2014 - 5:00 p.m.

CVE-2013-6482

2014-02-0617:00:05
CWE-20
web.nvd.nist.gov
38
pidgin
cve-2013-6482
msn
denial of service
vulnerability
nvd
remote
soap
oim
xml
content-length
null pointer dereference

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.2 Medium

AI Score

Confidence

Low

0.03 Low

EPSS

Percentile

90.9%

Pidgin before 2.10.8 allows remote MSN servers to cause a denial of service (NULL pointer dereference and crash) via a crafted (1) SOAP response, (2) OIM XML response, or (3) Content-Length header.

Affected configurations

NVD
Node
pidginpidginRange2.10.7
OR
pidginpidginMatch2.0.0
OR
pidginpidginMatch2.0.1
OR
pidginpidginMatch2.0.2
OR
pidginpidginMatch2.1.0
OR
pidginpidginMatch2.1.1
OR
pidginpidginMatch2.2.0
OR
pidginpidginMatch2.2.1
OR
pidginpidginMatch2.2.2
OR
pidginpidginMatch2.3.0
OR
pidginpidginMatch2.3.1
OR
pidginpidginMatch2.4.0
OR
pidginpidginMatch2.4.1
OR
pidginpidginMatch2.4.2
OR
pidginpidginMatch2.4.3
OR
pidginpidginMatch2.5.0
OR
pidginpidginMatch2.5.1
OR
pidginpidginMatch2.5.2
OR
pidginpidginMatch2.5.3
OR
pidginpidginMatch2.5.4
OR
pidginpidginMatch2.5.5
OR
pidginpidginMatch2.5.6
OR
pidginpidginMatch2.5.7
OR
pidginpidginMatch2.5.8
OR
pidginpidginMatch2.5.9
OR
pidginpidginMatch2.6.0
OR
pidginpidginMatch2.6.1
OR
pidginpidginMatch2.6.2
OR
pidginpidginMatch2.6.3
OR
pidginpidginMatch2.6.4
OR
pidginpidginMatch2.6.5
OR
pidginpidginMatch2.6.6
OR
pidginpidginMatch2.7.0
OR
pidginpidginMatch2.7.1
OR
pidginpidginMatch2.7.2
OR
pidginpidginMatch2.7.3
OR
pidginpidginMatch2.7.4
OR
pidginpidginMatch2.7.5
OR
pidginpidginMatch2.7.6
OR
pidginpidginMatch2.7.7
OR
pidginpidginMatch2.7.8
OR
pidginpidginMatch2.7.9
OR
pidginpidginMatch2.7.10
OR
pidginpidginMatch2.7.11
OR
pidginpidginMatch2.8.0
OR
pidginpidginMatch2.9.0
OR
pidginpidginMatch2.10.0
OR
pidginpidginMatch2.10.1
OR
pidginpidginMatch2.10.2
OR
pidginpidginMatch2.10.3
OR
pidginpidginMatch2.10.4
OR
pidginpidginMatch2.10.5
OR
pidginpidginMatch2.10.6

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.2 Medium

AI Score

Confidence

Low

0.03 Low

EPSS

Percentile

90.9%