Lucene search
+L

359 matches found

ubuntucve
ubuntucve
added 2016/06/23 12:0 a.m.24 views

CVE-2016-2369

A NULL pointer dereference vulnerability exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent via the server could potentially result in a denial of service vulnerability. A malicious server can send a packet starting with a NULL byte triggering the vulnerabilit...

5.9CVSS6.8AI score0.02251EPSS
Exploits1References4
osv
osv
added 2016/06/23 12:0 a.m.7 views

UBUNTU-CVE-2016-4323

A directory traversal exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent from the server could potentially result in an overwrite of files. A malicious server or someone with access to the network traffic can provide an invalid filename for a splash image...

3.7CVSS6.7AI score0.02305EPSS
Exploits2References5
osv
osv
added 2016/06/23 12:0 a.m.5 views

UBUNTU-CVE-2016-2373

A denial of service vulnerability exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent via the server could potentially result in an out-of-bounds read. A malicious server or user can send an invalid mood to trigger this vulnerability...

5.9CVSS6.8AI score0.023EPSS
Exploits1References5
osv
osv
added 2016/06/23 12:0 a.m.1 views

UBUNTU-CVE-2016-2371

An out-of-bounds write vulnerability exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent via the server could cause memory corruption resulting in code execution...

8.1CVSS6.9AI score0.03174EPSS
Exploits1References5
osv
osv
added 2016/06/23 12:0 a.m.2 views

UBUNTU-CVE-2016-2378

A buffer overflow vulnerability exists in the handling of the MXIT protocol Pidgin. Specially crafted data sent via the server could potentially result in a buffer overflow, potentially resulting in memory corruption. A malicious server or an unfiltered malicious user can send negative length...

8.1CVSS7.1AI score0.02522EPSS
Exploits1References5
osv
osv
added 2016/06/23 12:0 a.m.4 views

UBUNTU-CVE-2016-2376

A buffer overflow vulnerability exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent from the server could potentially result in arbitrary code execution. A malicious server or an attacker who intercepts the network traffic can send an invalid size for a packet...

8.1CVSS7.5AI score0.03732EPSS
Exploits1References5
osv
osv
added 2016/06/23 12:0 a.m.4 views

UBUNTU-CVE-2016-2367

An information leak exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent via the server could potentially result in an out-of-bounds read. A malicious user, server, or man-in-the-middle can send an invalid size for an avatar which will trigger an out-of-bounds...

5.9CVSS6.8AI score0.01947EPSS
Exploits1References5
osv
osv
added 2016/06/23 12:0 a.m.8 views

UBUNTU-CVE-2016-2366

A denial of service vulnerability exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent via the server could potentially result in an out-of-bounds read. A malicious server or an attacker who intercepts the network traffic can send invalid data to trigger this...

5.9CVSS6.8AI score0.02483EPSS
Exploits1References5
ubuntucve
ubuntucve
added 2016/06/23 12:0 a.m.24 views

CVE-2016-2376

A buffer overflow vulnerability exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent from the server could potentially result in arbitrary code execution. A malicious server or an attacker who intercepts the network traffic can send an invalid size for a packet...

8.1CVSS7.3AI score0.03732EPSS
Exploits1References4
osv
osv
added 2016/06/23 12:0 a.m.1 views

UBUNTU-CVE-2016-2377

A buffer overflow vulnerability exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent by the server could potentially result in an out-of-bounds write of one byte. A malicious server can send a negative content-length in response to a HTTP request triggering the...

8.1CVSS7AI score0.02669EPSS
Exploits1References5
osv
osv
added 2016/06/23 12:0 a.m.2 views

UBUNTU-CVE-2016-2380

An information leak exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent to the server could potentially result in an out-of-bounds read. A user could be convinced to enter a particular string which would then get converted incorrectly and could lead to a...

3.1CVSS6.7AI score0.01764EPSS
Exploits1References5
nessus
nessus
added 2016/06/23 12:0 a.m.46 views

Pidgin < 2.11.0 Multiple Vulnerabilities

The version of Pidgin installed on the remote Windows host is prior to 2.11.0. It is, therefore, affected by multiple vulnerabilities : - A NULL pointer dereference flaw exists when handling the MXIT protocol. A remote attacker can exploit this, via crafted MXIT data, to cause a denial of service...

8.8CVSS6.9AI score0.04554EPSS
Exploits17References35
osv
osv
added 2016/06/23 12:0 a.m.3 views

UBUNTU-CVE-2016-2368

Multiple memory corruption vulnerabilities exist in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent via the server could result in multiple buffer overflows, potentially resulting in code execution or memory disclosure...

8.1CVSS7.3AI score0.04554EPSS
Exploits1References5
osv
osv
added 2016/06/23 12:0 a.m.1 views

UBUNTU-CVE-2016-2370

A denial of service vulnerability exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent from the server could potentially result in an out-of-bounds read. A malicious server or man-in-the-middle attacker can send invalid data to trigger this vulnerability...

5.9CVSS6.8AI score0.02123EPSS
Exploits1References5
osv
osv
added 2016/06/23 12:0 a.m.4 views

UBUNTU-CVE-2016-2369

A NULL pointer dereference vulnerability exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent via the server could potentially result in a denial of service vulnerability. A malicious server can send a packet starting with a NULL byte triggering the vulnerabilit...

5.9CVSS6.8AI score0.02251EPSS
Exploits1References5
osv
osv
added 2016/06/23 12:0 a.m.2 views

UBUNTU-CVE-2016-2365

A denial of service vulnerability exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent via the server could potentially result in a null pointer dereference. A malicious server or an attacker who intercepts the network traffic can send invalid data to trigger th...

5.9CVSS6.8AI score0.02431EPSS
Exploits1References5
redhatcve
redhatcve
added 2016/06/22 9:19 a.m.24 views

CVE-2016-2367

An information leak exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent via the server could potentially result in an out-of-bounds read. A malicious user, server, or man-in-the-middle can send an invalid size for an avatar which will trigger an out-of-bounds...

5.9CVSS1.6AI score0.01947EPSS
Exploits1References2
redhatcve
redhatcve
added 2016/06/22 9:19 a.m.23 views

CVE-2016-2371

An out-of-bounds write vulnerability exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent via the server could cause memory corruption resulting in code execution...

8.1CVSS3.6AI score0.03174EPSS
Exploits1References2
redhatcve
redhatcve
added 2016/06/22 9:19 a.m.16 views

CVE-2016-2370

A denial of service vulnerability exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent from the server could potentially result in an out-of-bounds read. A malicious server or man-in-the-middle attacker can send invalid data to trigger this vulnerability...

5.9CVSS2AI score0.02123EPSS
Exploits1References2
redhatcve
redhatcve
added 2016/06/22 9:18 a.m.27 views

CVE-2016-2373

A denial of service vulnerability exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent via the server could potentially result in an out-of-bounds read. A malicious server or user can send an invalid mood to trigger this vulnerability...

5.9CVSS1.9AI score0.023EPSS
Exploits1References2
Rows per page
Query Builder