2 matches found
Pidgin multiple security vulnerabilities
Insufficient certificate validation, emoticons parsing DoS, Groupwise messages DoS, information leakages via XMPP...
USN-2390-1 pidgin vulnerabilities
Jacob Appelbaum and an anonymous person discovered that Pidgin incorrectly handled certificate validation. A remote attacker could exploit this to perform a machine-in-the-middle attack to view sensitive information or alter encrypted communications. CVE-2014-3694 Yves Younan and Richard Johnson...