13 matches found
Slackware: Security Advisory (SSA:2013-044-01)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : pidgin (openSUSE-SU-2013:0405-1)
pidgin was updated to fix security issues : - Fix a crash when receiving UPnP responses with abnormally long values. CVE-2013-0274 - Fix a crash in Sametime when a malicious server sends us an abnormally long user ID. CVE-2013-0273 - Fix a bug where the MXit server or a man-in-the-middle could...
openSUSE: Security Advisory for pidgin (openSUSE-SU-2013:0511-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
FreeBSD : libpurple -- multiple vulnerabilities (549787c1-8916-11e2-8549-68b599b52a02)
Pidgin reports : libpurple Fix a crash when receiving UPnP responses with abnormally long values. MXit Fix two bugs where a remote MXit user could possibly specify a local file path to be written to. Fix a bug where the MXit server or a man-in-the-middle could potentially send specially crafted...
openSUSE: Security Advisory for pidgin (openSUSE-SU-2013:0405-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Pidgin 'libpurple' 任意文件覆盖漏洞(CVE-2013-0271)
BUGTRAQ ID: 57952 CVECAN ID: CVE-2013-0271 Pidgin是一款多合一世界主流即时通讯软件集成工具。 Pidgin 2.10.7之前版本libpurple中MXit protocol插件存在安全漏洞,允许攻击者通过特制的mxit或mxit/imagestrips路径名创建或覆盖文件。 0 Pidgin 2.x 厂商补丁: Pidgin ------ 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.pidgin.im/news/security/...
SuSE 11.2 Security Update : pidgin (SAT Patch Number 7429)
pidgin was updated to fix 4 security issues : - Fixed a crash when receiving UPnP responses with abnormally long values. CVE-2013-0274, bnc804742 - Fixed a crash in Sametime protocol when a malicious server sends us an abnormally long user ID. CVE-2013-0273, bnc804742 - Fixed a bug where the MXit...
SuSE 10 Security Update : pidgin (ZYPP Patch Number 8475)
pidgin was updated to fix 4 security issues : - Fixed a crash when receiving UPnP responses with abnormally long values. CVE-2013-0274, bnc804742 - Fixed a crash in Sametime protocol when a malicious server sends us an abnormally long user ID. CVE-2013-0273, bnc804742 - Fixed a bug where the MXit...
Ubuntu: Security Advisory (USN-1746-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 10.04 LTS / 11.10 / 12.04 LTS / 12.10 : pidgin vulnerabilities (USN-1746-1)
Chris Wysopal discovered that Pidgin incorrectly handled file transfers in the MXit protocol handler. A remote attacker could use this issue to create or overwrite arbitrary files. This issue only affected Ubuntu 11.10, Ubuntu 12.04 LTS and Ubuntu 12.10. CVE-2013-0271 It was discovered that Pidgi...
CVE-2013-0271
The MXit protocol plugin in libpurple in Pidgin before 2.10.7 might allow remote attackers to create or overwrite files via a crafted 1 mxit or 2 mxit/imagestrips pathname...
DEBIAN-CVE-2013-0271
The MXit protocol plugin in libpurple in Pidgin before 2.10.7 might allow remote attackers to create or overwrite files via a crafted 1 mxit or 2 mxit/imagestrips pathname...
CVE-2013-0271
CVE-2013-0271 affects the MXit protocol plugin in libpurple/Pidgin. The vulnerability exists in Pidgin before version 2.10.7 and allows remote attackers to create or overwrite files via crafted MXIT pathname handling (1) mxit or (2) mxit/imagestrips). OpenVAS and vendor advisories reference fixes...