32 matches found
CVE-2021-37601
muc.lib.lua in Prosody 0.11.0 through 0.11.9 allows remote attackers to obtain sensitive information list of admins, members, owners, and banned entities of a Multi-User chat room in some common configurations...
CVE-2021-37601
muc.lib.lua in Prosody 0.11.0 through 0.11.9 allows remote attackers to obtain sensitive information list of admins, members, owners, and banned entities of a Multi-User chat room in some common configurations...
PT-2021-21732 · Prosody +1 · Prosody +1
Name of the Vulnerable Software and Affected Versions: Prosody versions 0.11.0 through 0.11.9 Description: The issue allows remote attackers to obtain sensitive information, including the list of admins, members, owners, and banned entities of a Multi-User chat room, in some common configurations...
Debian Security Advisory DSA 2775-1 (ejabberd - insecure SSL usage)
It was discovered that ejabberd, a Jabber/XMPP server, uses SSLv2 and weak ciphers for communication, which are considered insecure. The software offers no runtime configuration options to disable these. This update disables the use of SSLv2 and weak ciphers. The updated package for Debian 7 whee...
CentOS Update for finch CESA-2010:0115 centos5 i386
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Code injection
libpurple in Finch in Pidgin before 2.6.6, when an XMPP multi-user chat MUC room is used, does not properly parse nicknames containing sequences, which allows remote attackers to cause a denial of service application crash via a crafted nickname...
DEBIAN-CVE-2010-0420
libpurple in Finch in Pidgin before 2.6.6, when an XMPP multi-user chat MUC room is used, does not properly parse nicknames containing sequences, which allows remote attackers to cause a denial of service application crash via a crafted nickname...
CVE-2010-0420
libpurple in Finch in Pidgin before 2.6.6, when an XMPP multi-user chat MUC room is used, does not properly parse nicknames containing sequences, which allows remote attackers to cause a denial of service application crash via a crafted nickname...
finch, libpurple, pidgin security update
CentOS Errata and Security Advisory CESA-2010:0115 Updated pidgin packages that fix three security issues are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Pidgin is an instant messaging...
[ MDVSA-2010:041 ] pidgin
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2010:041 http://www.mandriva.com/security/ Package : pidgin Date : February 18, 2010 Affected: 2008.0, 2009.1, 2010.0, Enterprise Server 5.0 Problem Description: Multiple security vulnerabilities has been...
Mandriva Linux Security Advisory : pidgin (MDVSA-2010:041)
Multiple security vulnerabilities has been identified and fixed in pidgin : Certain malformed SLP messages can trigger a crash because the MSN protocol plugin fails to check that all pieces of the message are set correctly CVE-2010-0277. In a user in a multi-user chat room has a nickname containi...
Moderate: Red Hat Security Advisory: pidgin security update
Updated pidgin packages that fix three security issues are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Pidgin is an instant messaging program which can log in to multiple accounts on...