Lucene search
HistoryOct 29, 2014 - 10:55 a.m.
CVE-2014-3697
cve-2014-3697
absolute path traversal
pidgin
windows
untar function
remote attackers
arbitrary file write
tar archive
smile theme
nvd
6.4 Medium
AI Score
Confidence
Low
6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
0.003 Low
EPSS
Percentile
70.6%
Absolute path traversal vulnerability in the untar_block function in win32/untar.c in Pidgin before 2.10.10 on Windows allows remote attackers to write to arbitrary files via a drive name in a tar archive of a smiley theme.
Related
prion
prion
Path traversal
2014-10-29 10:55:00
debiancve
debiancve
CVE-2014-3697
2014-10-29 10:55:00
talos
talos
Pidgin Theme/Smiley Untar Arbitrary File Write Vulnerability
2014-11-06 00:00:00
ubuntucve
ubuntucve
CVE-2014-3697
2014-10-29 00:00:00
cvelist
cvelist
CVE-2014-3697
2014-10-29 10:00:00
threatpost
threatpost
Pidgin 2.10.10 Patches SSL MiTM, DoS Vulnerabilities
2014-11-10 10:48:05
nessus
nessus
kaspersky
kaspersky
KLA10448 Multiple Pidgin vulnerabilities
2014-10-22 00:00:00
slackware
slackware
[slackware-security] pidgin
2014-10-24 05:36:22
freebsd
freebsd
libpurple/pidgin -- multiple vulnerabilities
2014-10-22 00:00:00
openvas
openvas
Slackware: Security Advisory (SSA:2014-296-02)
2022-04-21 00:00:00
Pidgin Multiple Vulnerabilities (Nov 2014) - Windows
2014-11-21 00:00:00
Fedora Update for pidgin FEDORA-2014-14069
2014-11-11 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: pidgin-2.10.10-1.fc20
2014-11-10 06:47:47
securityvulns
securityvulns
[slackware-security] pidgin (SSA:2014-296-02)
2014-10-27 00:00:00
6.4 Medium
AI Score
Confidence
Low
6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
0.003 Low
EPSS
Percentile
70.6%
Related for CVE-2014-3697