Lucene search
K

15 matches found

Veracode
Veracode
added 2020/04/10 12:40 a.m.23 views

Arbitrary Code Execution

pidgin is vulnerable to arbitrary code execution. If a user received a malicious MSN message, it was possible to execute arbitrary code with the permissions of the user running Pidgin...

10CVSS3.9AI score0.20295EPSS
Exploits8References21Affected Software1
Tenable Nessus
Tenable Nessus
added 2008/12/16 12:0 a.m.34 views

RHEL 4 / 5 : pidgin (RHSA-2008:1023)

The remote Redhat Enterprise Linux 4 / 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2008:1023 advisory. - pidgin: remote DoS via MSN message with crafted file name CVE-2008-2955 - pidgin: unrestricted download of arbitrary files triggered v...

6.8CVSS8.5AI score0.07258EPSS
Exploits1References13
myhack58
myhack58
added 2008/12/12 12:0 a.m.14 views

MSN cross-site vulnerability analysis-vulnerability warning-the black bar safety net

As early as a few days ago, heard colleagues say,“friends msn send to a web page, enter the password, the results a few days later, the MSN password is wrong, could be stolen.” At that time also asked colleagues want the address, but he said address not found. A few days later a friend said to se...

6.7AI score
Exploits0
Prion
Prion
added 2008/07/01 10:41 p.m.35 views

Code injection

Pidgin 2.4.1 allows remote attackers to cause a denial of service crash via a long filename that contains certain characters, as demonstrated using an MSN message that triggers the crash in the msnslplinkprocessmsg function...

4.3CVSS6.3AI score0.07258EPSS
Exploits0References13Affected Software1
NVD
NVD
added 2008/07/01 10:41 p.m.23 views

CVE-2008-2955

Pidgin 2.4.1 allows remote attackers to cause a denial of service crash via a long filename that contains certain characters, as demonstrated using an MSN message that triggers the crash in the msnslplinkprocessmsg function...

4.3CVSS6.2AI score0.07258EPSS
Exploits0References13
OSV
OSV
added 2008/07/01 10:41 p.m.7 views

CVE-2008-2955

Pidgin 2.4.1 allows remote attackers to cause a denial of service crash via a long filename that contains certain characters, as demonstrated using an MSN message that triggers the crash in the msnslplinkprocessmsg function...

6.3AI score
Exploits0References13
UbuntuCve
UbuntuCve
added 2008/07/01 10:41 p.m.30 views

CVE-2008-2955

Pidgin 2.4.1 allows remote attackers to cause a denial of service crash via a long filename that contains certain characters, as demonstrated using an MSN message that triggers the crash in the msnslplinkprocessmsg function...

4.3CVSS7.2AI score0.07258EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2008/07/01 10:0 p.m.30 views

CVE-2008-2955

Pidgin 2.4.1 allows remote attackers to cause a denial of service crash via a long filename that contains certain characters, as demonstrated using an MSN message that triggers the crash in the msnslplinkprocessmsg function...

4.3CVSS6.1AI score0.07258EPSS
Exploits0
NVD
NVD
added 2008/05/23 3:32 p.m.8 views

CVE-2008-2409

Stack-based buffer overflow in Cerulean Studios Trillian before 3.1.10.0 allows remote attackers to execute arbitrary code via unspecified attributes in the X-MMS-IM-FORMAT header in an MSN message...

9.3CVSS8.1AI score0.06149EPSS
Exploits0References7
Prion
Prion
added 2008/05/23 3:32 p.m.11 views

Stack overflow

Stack-based buffer overflow in Cerulean Studios Trillian before 3.1.10.0 allows remote attackers to execute arbitrary code via unspecified attributes in the X-MMS-IM-FORMAT header in an MSN message...

9.3CVSS8.8AI score0.06149EPSS
Exploits0References7Affected Software1
UbuntuCve
UbuntuCve
added 2005/05/19 4:0 a.m.22 views

CVE-2005-1934

Gaim before 1.3.1 allows remote attackers to cause a denial of service crash via a malformed MSN message that leads to a memory allocation of a large size, possibly due to an integer signedness error...

5CVSS5.9AI score0.02385EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2005/05/11 4:0 a.m.25 views

CVE-2005-1262

Gaim 1.2.1 and earlier allows remote attackers to cause a denial of service application crash via a malformed MSN message...

5CVSS6AI score0.01898EPSS
Exploits0References1
CVE
CVE
added 2005/05/11 4:0 a.m.54 views

CVE-2005-1262

CVE-2005-1262 affects Gaim 1.2.1 and earlier. The issue allows remote attackers to cause a denial of service (application crash) by sending a malformed MSN message. Connected sources corroborate a separate but related buffer/URL handling flaw (CVE-2005-1261) and indicate updated packages to fix b...

5CVSS6.2AI score0.01898EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2005/05/11 4:0 a.m.33 views

CVE-2005-1262

Gaim 1.2.1 and earlier allows remote attackers to cause a denial of service application crash via a malformed MSN message...

6.2AI score0.01898EPSS
Exploits0References7
NVD
NVD
added 2005/05/11 4:0 a.m.20 views

CVE-2005-1262

Gaim 1.2.1 and earlier allows remote attackers to cause a denial of service application crash via a malformed MSN message...

5CVSS6.3AI score0.01898EPSS
Exploits0References7
Rows per page
Query Builder