Lucene search
+L

359 matches found

osv
osv
added 2016/07/05 3:47 p.m.6 views

MGASA-2016-0236 Updated pidgin packages fix security vulnerability

A buffer overflows vulnerability exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent from the server could potentially result in arbitrary code execution. A malicious server or an attacker who intercepts the network traffic can send an invalid size for a packet...

8.1CVSS7.5AI score0.04554EPSS
Exploits17References19
nessus
nessus
added 2016/07/05 12:0 a.m.32 views

Debian DLA-542-1 : pidgin security update

Numerous security issues have been identified and fixed in Pidgin in Debian/Wheezy. CVE-2016-2365 MXIT Markup Command Denial of Service Vulnerability CVE-2016-2366 MXIT Table Command Denial of Service Vulnerability CVE-2016-2367 MXIT Avatar Length Memory Disclosure Vulnerability CVE-2016-2368 MXI...

8.1CVSS6.3AI score0.04554EPSS
Exploits17References18
debian
debian
added 2016/07/04 10:35 a.m.35 views

[SECURITY] [DLA 542-1] pidgin security update

Package : pidgin Version : 2.10.10-1deb7u2 CVE ID : CVE-2016-2365 CVE-2016-2366 CVE-2016-2367 CVE-2016-2368 CVE-2016-2369 CVE-2016-2370 CVE-2016-2371 CVE-2016-2372 CVE-2016-2373 CVE-2016-2374 CVE-2016-2375 CVE-2016-2376 CVE-2016-2377 CVE-2016-2378 CVE-2016-2380 CVE-2016-4323 Numerous security...

8.1CVSS7.5AI score0.04554EPSS
Exploits17
cnvd
cnvd
added 2016/06/28 12:0 a.m.6 views

Pidgin MXIT Protocol Denial of Service Vulnerability (CNVD-2016-04337)

Pidgin is a cross-platform real-time communication client. A denial-of-service vulnerability exists in the MXIT protocol processing in Pidgin version 2.10.11, which can be exploited by an attacker to cause a denial of service read across boundaries by sending invalid data...

5.9CVSS6.8AI score0.02123EPSS
Exploits1References1
cnvd
cnvd
added 2016/06/28 12:0 a.m.7 views

Pidgin MXIT Protocol Buffer Overflow Vulnerability (CNVD-2016-04339)

Pidgin is a cross-platform real-time communication client. A buffer overflow vulnerability exists in the MXIT protocol processing of Pidgin version 2.10.11, which can be exploited by an attacker to cause an out-of-bounds read with the help of specially crafted MXIT data...

4.3CVSS7.2AI score0.01764EPSS
Exploits1References1
cnvd
cnvd
added 2016/06/28 12:0 a.m.25 views

Pidgin MXIT Protocol Denial of Service Vulnerability (CNVD-2016-04334)

Pidgin is a cross-platform real-time communication client. A denial of service vulnerability exists in the MXIT protocol processing of Pidgin version 2.10.11, which can be exploited by an attacker to cause a denial of service null pointer reverse reference by sending invalid data...

5.9CVSS6.8AI score0.02431EPSS
Exploits1References1
cnvd
cnvd
added 2016/06/28 12:0 a.m.7 views

Pidgin MXIT Protocol Memory Corruption Vulnerability (CNVD-2016-04341)

Pidgin is a cross-platform real-time communication client. A security vulnerability exists in the MXIT protocol processing in Pidgin version 2.10.11, which can be exploited by an attacker to cause out-of-bounds writes and memory corruption, or execute arbitrary code by sending specially crafted...

8.1CVSS7.6AI score0.03174EPSS
Exploits1References1
cnvd
cnvd
added 2016/06/28 12:0 a.m.7 views

Pidgin MXIT Protocol Directory Traversal Vulnerability

Pidgin is a cross-platform real-time communication client. A directory traversal vulnerability exists in the MXIT protocol handling of Pidgin version 2.10.11, which can be exploited by an attacker to overwrite a file by providing an invalid boot image name...

5.8CVSS7AI score0.02305EPSS
Exploits2References1
cnvd
cnvd
added 2016/06/28 12:0 a.m.6 views

Pidgin MXIT Protocol Denial of Service Vulnerability (CNVD-2016-04335)

Pidgin is a cross-platform real-time communication client. A denial-of-service vulnerability exists in the MXIT protocol processing in Pidgin version 2.10.11, which can be exploited by an attacker to cause a denial of service read across boundaries by sending invalid data...

5.9CVSS6.8AI score0.02483EPSS
Exploits1References1
cnvd
cnvd
added 2016/06/28 12:0 a.m.10 views

Pidgin MXIT Protocol Denial of Service Vulnerability (CNVD-2016-04336)

Pidgin is a cross-platform real-time communication client. A denial of service vulnerability exists in the MXIT protocol processing in Pidgin version 2.10.11, which can be exploited by an attacker to cause a denial of service null pointer backreference by sending packets starting with a null byte...

5.9CVSS6.8AI score0.02251EPSS
Exploits1References1
cnvd
cnvd
added 2016/06/28 12:0 a.m.19 views

Pidgin MXIT Protocol Buffer Overflow Vulnerability (CNVD-2016-04340)

Pidgin is a cross-platform real-time communication client. A buffer overflow vulnerability exists in the MXIT protocol processing in Pidgin version 2.10.11, which can be exploited by an attacker to cause a buffer overflow and memory corruption with the help of a negative length value...

8.1CVSS7.4AI score0.02522EPSS
Exploits1References1
cnvd
cnvd
added 2016/06/28 12:0 a.m.8 views

Pidgin MXIT Protocol Information Disclosure Vulnerability (CNVD-2016-04331)

Pidgin is a cross-platform real-time communication client. An information disclosure vulnerability exists in the MXIT protocol processing in Pidgin version 2.10.11, which can be exploited by an attacker to cause a denial of service read across boundaries or copy memory to a file with the help of ...

5.9CVSS6.7AI score0.01947EPSS
Exploits1References1
cnvd
cnvd
added 2016/06/28 12:0 a.m.9 views

Pidgin MXIT Protocol Memory Corruption Vulnerability (CNVD-2016-04333)

Pidgin is a cross-platform real-time communication client. A memory corruption vulnerability exists in the MXIT protocol processing in Pidgin version 2.10.11, which can be exploited by an attacker to cause a buffer overflow, execute arbitrary code, or cause a memory leak by sending specially...

8.1CVSS7.6AI score0.04554EPSS
Exploits1References1
cnvd
cnvd
added 2016/06/26 12:0 a.m.4 views

Pidgin MXIT Protocol Buffer Overflow Vulnerability (CNVD-2016-04347)

Pidgin is a cross-platform real-time communication client that supports several popular real-time communication protocols. A buffer overflow vulnerability exists in Pidgin's MXIT protocol processing, which allows remote attackers to exploit the vulnerability to send a negative-length HTTP respons...

8.1CVSS7.3AI score0.02669EPSS
Exploits1References1
archlinux
archlinux
added 2016/06/25 12:0 a.m.55 views

libpurple: multiple issues

CVE-2016-2365 denial of service Specially crafted MXIT data sent via the server could potentially result in a null pointer dereference. - CVE-2016-2366 denial of service Specially crafted MXIT data sent via the server could potentially result in an out-of-bounds read. - CVE-2016-2367 information...

6.4CVSS2.1AI score0.04554EPSS
Exploits17References17
cnvd
cnvd
added 2016/06/24 12:0 a.m.35 views

Pidgin MXIT Protocol Memory Corruption Vulnerability

Pidgin is a cross-platform real-time communication client that supports several commonly used real-time communication protocols and allows users to log into different real-time communication services with the same software. A memory corruption vulnerability exists in the MXIT protocol processing ...

8.1CVSS7.5AI score0.03228EPSS
Exploits1References1
cnvd
cnvd
added 2016/06/24 12:0 a.m.9 views

Pidgin MXIT Protocol Denial of Service Vulnerability

Pidgin is a cross-platform real-time communication client that supports several commonly used real-time communication protocols and allows users to log into different real-time communication services with the same software. A denial of service vulnerability exists in the MXIT protocol processing ...

5.9CVSS6.8AI score0.023EPSS
Exploits1References1
ptsecurity
ptsecurity
added 2016/06/23 12:0 a.m.1 views

PT-2016-3142 · Pidgin +2 · Pidgin +2

Name of the Vulnerable Software and Affected Versions: Pidgin affected versions not specified Description: The issue is related to multiple memory corruption vulnerabilities in the handling of the MXIT protocol. These vulnerabilities can be exploited by sending specially crafted MXIT data via the...

9.8CVSS6.9AI score0.04554EPSS
Exploits17References76
ptsecurity
ptsecurity
added 2016/06/23 12:0 a.m.1 views

PT-2016-5138 · Pidgin +2 · Pidgin +2

Name of the Vulnerable Software and Affected Versions: Pidgin affected versions not specified Description: A NULL pointer dereference issue exists in the handling of the MXIT protocol. Specially crafted MXIT data sent via the server could result in a denial of service. A malicious server can send...

9.8CVSS5.7AI score0.04554EPSS
Exploits17References76
ptsecurity
ptsecurity
added 2016/06/23 12:0 a.m.1 views

PT-2016-5142 · Pidgin +3 · Pidgin +3

Name of the Vulnerable Software and Affected Versions: Pidgin affected versions not specified Description: A denial of service issue exists in the handling of the MXIT protocol. Specially crafted MXIT data sent via the server could result in an out-of-bounds read. A malicious server or user can...

9.8CVSS5.8AI score0.04554EPSS
Exploits17References88
Rows per page
Query Builder