Lucene search
K

7 matches found

OpenVAS
OpenVAS
added 2014/11/11 12:0 a.m.27 views

Fedora Update for pidgin FEDORA-2014-14069

Check the version of pidgin SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868472";...

6.4CVSS9.6AI score0.03838EPSS
Exploits0References2
Talos
Talos
added 2014/11/06 12:0 a.m.59 views

Pidgin Theme/Smiley Untar Arbitrary File Write Vulnerability

Talos Vulnerability Report VRT-2014-0205 Pidgin Theme/Smiley Untar Arbitrary File Write Vulnerability November 6, 2014 CVE Number CVE-2014-3697 Description An exploitable remote code execution vulnerability exists in Pidgin’s implementation of the TAR archive parsing functionality. An attacker wh...

6.4CVSS7.2AI score0.03838EPSS
Exploits0
NVD
NVD
added 2014/10/29 10:55 a.m.26 views

CVE-2014-3697

Absolute path traversal vulnerability in the untarblock function in win32/untar.c in Pidgin before 2.10.10 on Windows allows remote attackers to write to arbitrary files via a drive name in a tar archive of a smiley theme...

6.4CVSS6.6AI score0.03838EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2014/10/29 10:55 a.m.33 views

CVE-2014-3697

Absolute path traversal vulnerability in the untarblock function in win32/untar.c in Pidgin before 2.10.10 on Windows allows remote attackers to write to arbitrary files via a drive name in a tar archive of a smiley theme...

6.4CVSS6AI score0.03838EPSS
Exploits0References3
CVE
CVE
added 2014/10/29 10:0 a.m.73 views

CVE-2014-3697

The CVE-2014-3697 issue affects Pidgin for Windows, where the untar_block function in win32/untar.c allows absolute path traversal via a tar archive’s drive name in a smiley theme. This enables remote attackers to write files to arbitrary locations on the victim system. Public references indicate...

6.4CVSS6.6AI score0.03838EPSS
Exploits0References4Affected Software1
Slackware Linux
Slackware Linux
added 2014/10/24 5:36 a.m.44 views

[slackware-security] pidgin

New pidgin packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: pidgin-2.10.10-i486-1slack14.1.txz: Upgraded. This update fixes several security issues: Insufficient SSL certificate...

6.4CVSS9.2AI score0.03838EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/10/24 12:0 a.m.23 views

FreeBSD : libpurple/pidgin -- multiple vulnerabilities (d057c5e6-5b20-11e4-bebd-000c2980a9f3)

The pidgin development team reports : . %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-2018 Jacques Vidrine and contributors Redistribution and use in source VuXML and...

6.4CVSS7.5AI score0.03838EPSS
Exploits0References7
Rows per page
Query Builder