Lucene search
K

39 matches found

Tenable Nessus
Tenable Nessus
added 2011/12/13 12:0 a.m.23 views

SuSE 11.1 Security Update : pidgin, libpurple and finch (SAT Patch Number 5389)

This update fixes the following security issues : - 604225: MSN emoticon DoS. CVE-2010-1624 - 648273: multiple NULL pointer dereference weaknesses. CVE-2010-3711 - 722199: vulnerability in SILC protocol handling CVE-2011-3594 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive te...

5CVSS5.3AI score0.05586EPSS
Exploits3References9
OpenVAS
OpenVAS
added 2011/12/12 12:0 a.m.24 views

Mandriva Update for pidgin MDVSA-2011:183 (pidgin)

Check for the Version of pidgin OpenVAS Vulnerability Test Mandriva Update for pidgin MDVSA-2011:183 pidgin Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

5CVSS0.04697EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2011/12/12 12:0 a.m.23 views

Mandriva Linux Security Advisory : pidgin (MDVSA-2011:183)

Multiple vulnerabilities has been discovered and corrected in pidgin : When receiving various stanzas related to voice and video chat, the XMPP protocol plugin failed to ensure that the incoming message contained all required fields, and would crash if certain fields were missing. When receiving...

5CVSS5.3AI score0.04697EPSS
Exploits3References6
Ubuntu
Ubuntu
added 2011/11/21 7:56 p.m.55 views

USN-1273-1: Pidgin vulnerabilities

Marius Wachtler discovered that Pidgin incorrectly handled malformed YMSG messages in the Yahoo! protocol handler. A remote attacker could send a specially crafted message and cause Pidgin to crash, leading to a denial of service. This issue only affected Ubuntu 10.04 LTS and 10.10. CVE-2011-1091...

4.3CVSS5.4AI score0.03858EPSS
Exploits2
OpenVAS
OpenVAS
added 2011/11/11 12:0 a.m.21 views

CentOS Update for finch CESA-2011:1371 centos4 i386

Check for the Version of finch OpenVAS Vulnerability Test CentOS Update for finch CESA-2011:1371 centos4 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

4.3CVSS7.7AI score0.03194EPSS
Exploits2References2
NVD
NVD
added 2011/11/04 9:55 p.m.20 views

CVE-2011-3594

The gmarkupescapetext function in the SILC protocol plug-in in libpurple 2.10.0 and earlier, as used in Pidgin and possibly other products, allows remote attackers to cause a denial of service crash via invalid UTF-8 sequences that trigger use of invalid pointers and an out-of-bounds read, relate...

4.3CVSS7.4AI score0.03194EPSS
Exploits2References8
OSV
OSV
added 2011/11/04 9:55 p.m.3 views

DEBIAN-CVE-2011-3594

The gmarkupescapetext function in the SILC protocol plug-in in libpurple 2.10.0 and earlier, as used in Pidgin and possibly other products, allows remote attackers to cause a denial of service crash via invalid UTF-8 sequences that trigger use of invalid pointers and an out-of-bounds read, relate...

4.3CVSS6.5AI score0.03194EPSS
Exploits2References1
Prion
Prion
added 2011/11/04 9:55 p.m.17 views

Out-of-bounds

The gmarkupescapetext function in the SILC protocol plug-in in libpurple 2.10.0 and earlier, as used in Pidgin and possibly other products, allows remote attackers to cause a denial of service crash via invalid UTF-8 sequences that trigger use of invalid pointers and an out-of-bounds read, relate...

4.3CVSS6.8AI score0.03194EPSS
Exploits2References8Affected Software1
CVE
CVE
added 2011/11/04 9:0 p.m.84 views

CVE-2011-3594

CVE-2011-3594 affects the Pidgin/libpurple SILC protocol plug-in (libpurple 2.10.0 and earlier). The issue: remote sending of certain SILC messages with invalid UTF-8 sequences can trigger use-after-free/invalid-pointer and out-of-bounds reads, crashing Pidgin. Public advisories show downstream p...

4.3CVSS7.2AI score0.03194EPSS
Exploits2References8Affected Software2
UbuntuCve
UbuntuCve
added 2011/11/04 12:0 a.m.27 views

CVE-2011-3594

The gmarkupescapetext function in the SILC protocol plug-in in libpurple 2.10.0 and earlier, as used in Pidgin and possibly other products, allows remote attackers to cause a denial of service crash via invalid UTF-8 sequences that trigger use of invalid pointers and an out-of-bounds read, relate...

4.3CVSS5.9AI score0.03194EPSS
Exploits2References2
RedHat Linux
RedHat Linux
added 2011/10/14 3:24 a.m.5 views

libpurple: invalid UTF-8 string handling in SILC messages

The gmarkupescapetext function in the SILC protocol plug-in in libpurple 2.10.0 and earlier, as used in Pidgin and possibly other products, allows remote attackers to cause a denial of service crash via invalid UTF-8 sequences that trigger use of invalid pointers and an out-of-bounds read, relate...

4.3CVSS5.9AI score0.03194EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2010/02/24 12:0 a.m.26 views

Debian DSA-1879-1 : silc-client/silc-toolkit - several vulnerabilities

Several vulnerabilities have been discovered in the software suite for the SILC protocol, a network protocol designed to provide end-to-end security for conferencing services. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-7159 An incorrect format...

7.5CVSS6.4AI score0.04827EPSS
Exploits0References8
Debian
Debian
added 2009/09/20 1:8 p.m.79 views

[Backports-security-announce] Security update for silc-client/silc-toolkit

Jérémy Bobbio uploaded new packages for silc-client/silc-toolkit which fixed the following security problems: DSA 1879-1 Several vulnerabilities have been discovered in the software suite for the SILC protocol, a network protocol designed to provide end-to-end security for conferencing services...

7.5CVSS1.6AI score0.04827EPSS
Exploits0
OpenVAS
OpenVAS
added 2009/09/09 12:0 a.m.26 views

Debian: Security Advisory (DSA-1879-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS5.8AI score0.04827EPSS
Exploits0References3
Debian
Debian
added 2009/09/04 3:18 p.m.56 views

[SECURITY] [DSA 1879-1] New silc-client/silc-toolkit packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA-1879-1 [email protected] http://www.debian.org/security/ Nico Golde September 4th, 2009 http://www.debian.org/security/faq -...

7.5CVSS7.3AI score0.04827EPSS
Exploits0
securityvulns
securityvulns
added 2009/09/04 12:0 a.m.59 views

[SECURITY] [DSA 1879-1] New silc-client/silc-toolkit packages fix arbitrary code execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA-1879-1 [email protected] http://www.debian.org/security/ Nico Golde September 4th, 2009 http://www.debian.org/security/faq -...

7.5CVSS0.04827EPSS
Exploits0
OSV
OSV
added 2009/09/04 12:0 a.m.25 views

DSA-1879-1 silc-client silc-toolkit - arbitrary code execution

Bulletin has no description...

7.5CVSS5.5AI score0.04827EPSS
Exploits0
OpenVAS
OpenVAS
added 2009/03/06 12:0 a.m.24 views

RedHat Update for pidgin RHSA-2008:1023-01

Check for the Version of pidgin OpenVAS Vulnerability Test RedHat Update for pidgin RHSA-2008:1023-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

6.8CVSS7.7AI score0.07258EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2008/12/23 12:0 a.m.26 views

CentOS 4 / 5 : pidgin (CESA-2008:1023)

Updated Pidgin packages that fix several security issues and bugs are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Pidgin is a multi-protocol Internet Messaging client. A denial-of-service...

6.8CVSS7.9AI score0.07258EPSS
Exploits1References8
Rows per page
Query Builder