Lucene search

[email protected]NVD:CVE-2007-4999

HistoryOct 29, 2007 - 10:46 p.m.

CVE-2007-4999

2007-10-2922:46:00

CWE-20

[email protected]

web.nvd.nist.gov

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

6.2 Medium

AI Score

Confidence

High

0.061 Low

EPSS

Percentile

93.6%

JSON

libpurple in Pidgin 2.1.0 through 2.2.1, when using HTML logging, allows remote attackers to cause a denial of service (NULL dereference and application crash) via a message that contains invalid HTML data, a different vector than CVE-2007-4996.

Affected configurations

NVD

Node

pidginpidginMatch2.1.0

pidginpidginMatch2.2.0

pidginpidginMatch2.2.1

References

osvdb.org/38695

secunia.com/advisories/27372

secunia.com/advisories/27495

secunia.com/advisories/27858

www.pidgin.im/news/security/?id=24

www.securityfocus.com/archive/1/483580/100/0/threaded

www.securityfocus.com/bid/26205

www.ubuntu.com/usn/usn-548-1

www.vupen.com/english/advisories/2007/3624

exchange.xforce.ibmcloud.com/vulnerabilities/38132

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18357

www.redhat.com/archives/fedora-package-announce/2007-November/msg00011.html

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

6.2 Medium

AI Score

Confidence

High

0.061 Low

EPSS

Percentile

93.6%

JSON

Related for NVD:CVE-2007-4999

fedora2 ubuntucve2 debiancve2 redhatcve1 cvelist2 prion2 openvas6 cve2 nessus4 ubuntu1 securityvulns2 nvd1