Lucene search
K

16 matches found

Veracode
Veracode
added 2019/05/02 5:1 a.m.25 views

Denial Of Service (DoS)

Pidgin is an instant messaging program which can log in to multiple accounts on multiple instant messaging networks simultaneously. A heap-based buffer overflow flaw was found in the way Pidgin processed certain HTTP responses. A malicious server could send a specially crafted HTTP response,...

10CVSS7.6AI score0.14809EPSS
Exploits0References9Affected Software1
Veracode
Veracode
added 2019/05/02 5:1 a.m.22 views

Denial Of Service (DoS)

Pidgin is an instant messaging program which can log in to multiple accounts on multiple instant messaging networks simultaneously. A heap-based buffer overflow flaw was found in the way Pidgin processed certain HTTP responses. A malicious server could send a specially crafted HTTP response,...

10CVSS7.6AI score0.14809EPSS
Exploits0References9Affected Software1
Kaspersky
Kaspersky
added 2014/06/02 12:0 a.m.53 views

KLA10433 Multiple vulnerabilities in Pidgin

Multiple serious vulnerabilities have been found in Pidgin. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary programs and other unknown impact. Below is a complete list of vulnerabilities 1. Improper traffic restrictions can be exploited remotely via...

10CVSS8.5AI score0.14809EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/02/17 12:0 a.m.24 views

Fedora 19 : pidgin-2.10.9-1.fc19 (2014-1999)

Update to 2.10.9 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable Network...

10CVSS5.3AI score0.14809EPSS
Exploits0References27
OpenVAS
OpenVAS
added 2014/02/17 12:0 a.m.26 views

Fedora Update for pidgin FEDORA-2014-1999

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.8AI score0.14809EPSS
Exploits0References2
Debian
Debian
added 2014/02/15 10:31 a.m.45 views

[BSA-092] Security Update for pidgin

intrigeri uploaded new packages for pidgin which fixed the following security problems: CVE-2013-6477 Jaime Breva Ribes discovered that a remote XMPP user can trigger a crash by sending a message with a timestamp in the distant future. CVE-2013-6478 Pidgin could be crashed through overly wide...

10CVSS6AI score0.14809EPSS
Exploits0
OpenVAS
OpenVAS
added 2014/02/11 12:0 a.m.24 views

CentOS Update for finch CESA-2014:0139 centos5

Check for the Version of finch OpenVAS Vulnerability Test CentOS Update for finch CESA-2014:0139 centos5 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

10CVSS0.1AI score0.14809EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2014/02/11 12:0 a.m.33 views

CentOS Update for finch CESA-2014:0139 centos6

Check for the Version of finch OpenVAS Vulnerability Test CentOS Update for finch CESA-2014:0139 centos6 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

10CVSS0.1AI score0.14809EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2014/02/11 12:0 a.m.23 views

CentOS Update for finch CESA-2014:0139 centos5

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS5.2AI score0.14809EPSS
Exploits0References2
OSV
OSV
added 2014/02/06 4:10 p.m.8 views

CVE-2013-6477

Multiple integer signedness errors in libpurple in Pidgin before 2.10.8 allow remote attackers to cause a denial of service application crash via a crafted timestamp value in an XMPP message...

6.2AI score
Exploits0References7
Cvelist
Cvelist
added 2014/02/06 3:0 p.m.23 views

CVE-2013-6477

Multiple integer signedness errors in libpurple in Pidgin before 2.10.8 allow remote attackers to cause a denial of service application crash via a crafted timestamp value in an XMPP message...

6.1AI score0.03913EPSS
Exploits0References7
CVE
CVE
added 2014/02/06 3:0 p.m.84 views

CVE-2013-6477

Pidgin/libpurple prior to version 2.10.8 is vulnerable to a denial of service via a crafted timestamp in an XMPP message, caused by multiple integer signedness errors in the codepath handling XMPP timestamps. The issue is explicitly identified as CVE-2013-6477. Connected advisories show that the ...

5CVSS6.2AI score0.03913EPSS
Exploits0References7Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/02/06 12:0 a.m.34 views

CentOS 5 / 6 : pidgin (CESA-2014:0139)

Updated pidgin packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings...

10CVSS6.5AI score0.14809EPSS
Exploits0References15
Cent OS
Cent OS
added 2014/02/05 7:41 p.m.66 views

finch, libpurple, pidgin security update

CentOS Errata and Security Advisory CESA-2014:0139 Updated pidgin packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVS...

10CVSS6.3AI score0.14809EPSS
Exploits0References7
Oracle linux
Oracle linux
added 2014/02/05 12:0 a.m.35 views

pidgin security update

2.7.9-27.el6 - Fix regression in CVE-2013-6483. 2.7.9-26.el6 - Fix patch for CVE-2012-6152 RH bug 1058242. 2.7.9-25.el6 - Add patch for CVE-2014-0020 RH bug 1058242. 2.7.9-24.el6 - Add patch for CVE-2013-6490 RH bug 1058242. 2.7.9-23.el6 - Add patch for CVE-2013-6489 RH bug 1058242. 2.7.9-22.el6 ...

10CVSS0.9AI score0.14809EPSS
Exploits0
Slackware Linux
Slackware Linux
added 2014/02/03 1:58 p.m.28 views

pidgin

New pidgin packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/pidgin-2.10.9-i486-1slack14.1.txz: Upgraded. This update fixes various security issues and other bugs. For...

10CVSS7AI score0.14809EPSS
Exploits0
Rows per page
Query Builder