20 matches found
Linux Distros Unpatched Vulnerability : CVE-2013-0272
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer overflow in http.c in the MXit protocol plugin in libpurple in Pidgin before 2.10.7 allows remote servers to execute arbitrary code via a long HTTP heade...
Slackware: Security Advisory (SSA:2013-044-01)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : pidgin (openSUSE-SU-2013:0405-1)
pidgin was updated to fix security issues : - Fix a crash when receiving UPnP responses with abnormally long values. CVE-2013-0274 - Fix a crash in Sametime when a malicious server sends us an abnormally long user ID. CVE-2013-0273 - Fix a bug where the MXit server or a man-in-the-middle could...
openSUSE: Security Advisory for pidgin (openSUSE-SU-2013:0511-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Oracle Linux 5 / 6 : pidgin (ELSA-2013-0646)
The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2013-0646 advisory. - Add patch for CVE-2013-0274 RH bug 910653. - Add patch for CVE-2013-0273 RH bug 910653. - Add patch for CVE-2013-0272 RH bug 910653. - Add patch...
CentOS 5 / 6 : pidgin (CESA-2013:0646)
Updated pidgin packages that fix three security issues are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, a...
RedHat Update for pidgin RHSA-2013:0646-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
CentOS Update for finch CESA-2013:0646 centos6
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
CentOS Update for finch CESA-2013:0646 centos5
Check for the Version of finch OpenVAS Vulnerability Test CentOS Update for finch CESA-2013:0646 centos5 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
RHEL 5 / 6 : pidgin (RHSA-2013:0646)
Updated pidgin packages that fix three security issues are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, a...
openSUSE: Security Advisory for pidgin (openSUSE-SU-2013:0405-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
openSUSE: Security Advisory for pidgin (openSUSE-SU-2013:0407-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
FreeBSD : libpurple -- multiple vulnerabilities (549787c1-8916-11e2-8549-68b599b52a02)
Pidgin reports : libpurple Fix a crash when receiving UPnP responses with abnormally long values. MXit Fix two bugs where a remote MXit user could possibly specify a local file path to be written to. Fix a bug where the MXit server or a man-in-the-middle could potentially send specially crafted...
Pidgin 'libpurple' HTTP标头栈缓冲区溢出漏洞(CVE-2013-0272)
BUGTRAQ ID: 57951 CVECAN ID: CVE-2013-0272 Pidgin是一款多合一世界主流即时通讯软件集成工具。 Pidgin 2.10.7之前版本libpurple中MXit protocol插件内的 "mxitcbhttpread"函数libpurple/protocols/mxit/http.c存在栈缓冲区溢出漏洞,允许远程服务器或实施了中间人攻击的攻击者通过超长的HTTP标头执行任意代码。 0 Pidgin 2.x 厂商补丁: Pidgin ------ 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
SuSE 10 Security Update : pidgin (ZYPP Patch Number 8475)
pidgin was updated to fix 4 security issues : - Fixed a crash when receiving UPnP responses with abnormally long values. CVE-2013-0274, bnc804742 - Fixed a crash in Sametime protocol when a malicious server sends us an abnormally long user ID. CVE-2013-0273, bnc804742 - Fixed a bug where the MXit...
SuSE 11.2 Security Update : pidgin (SAT Patch Number 7429)
pidgin was updated to fix 4 security issues : - Fixed a crash when receiving UPnP responses with abnormally long values. CVE-2013-0274, bnc804742 - Fixed a crash in Sametime protocol when a malicious server sends us an abnormally long user ID. CVE-2013-0273, bnc804742 - Fixed a bug where the MXit...
Ubuntu: Security Advisory (USN-1746-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 10.04 LTS / 11.10 / 12.04 LTS / 12.10 : pidgin vulnerabilities (USN-1746-1)
Chris Wysopal discovered that Pidgin incorrectly handled file transfers in the MXit protocol handler. A remote attacker could use this issue to create or overwrite arbitrary files. This issue only affected Ubuntu 11.10, Ubuntu 12.04 LTS and Ubuntu 12.10. CVE-2013-0271 It was discovered that Pidgi...
CVE-2013-0272
CVE-2013-0272 affects Pidgin’s libpurple MXit protocol plugin; a buffer overflow in http.c allows remote servers to execute arbitrary code via a long HTTP header, with impact as described in the CVE. Affected product/version: Pidgin/libpurple prior to 2.10.7. Mitigation: upgrade to Pidgin 2.10.7 ...
CVE-2013-0272
Buffer overflow in http.c in the MXit protocol plugin in libpurple in Pidgin before 2.10.7 allows remote servers to execute arbitrary code via a long HTTP header...