217 matches found
CVE-2012-1178
CVE-2012-1178 affects Pidgin/libpurple MSN protocol plugin (oim.c: msn_oim_report_to_user). A remote server can crash the client by sending an OIM message that is not UTF-8 encoded, leading to a denial of service. Affected: Pidgin up to version prior to 2.10.2 (PIDGIN/ libpurple with MSN plugin)....
CVE-2012-1178
The msnoimreporttouser function in oim.c in the MSN protocol plugin in libpurple in Pidgin before 2.10.2 allows remote servers to cause a denial of service application crash via an OIM message that lacks UTF-8 encoding...
CVE-2012-1178
The msnoimreporttouser function in oim.c in the MSN protocol plugin in libpurple in Pidgin before 2.10.2 allows remote servers to cause a denial of service application crash via an OIM message that lacks UTF-8 encoding...
libpurple -- Remote DoS via an MSN OIM message that lacks UTF-8 encoding
US-CERT reports: The msnoimreporttouser function in oim.c in the MSN protocol plugin in libpurple in Pidgin before 2.10.2 allows remote servers to cause a denial of service application crash via an OIM message that lacks UTF-8 encoding...
USN-1273-1: Pidgin vulnerabilities
Marius Wachtler discovered that Pidgin incorrectly handled malformed YMSG messages in the Yahoo! protocol handler. A remote attacker could send a specially crafted message and cause Pidgin to crash, leading to a denial of service. This issue only affected Ubuntu 10.04 LTS and 10.10. CVE-2011-1091...
Mandriva Update for pidgin MDVSA-2011:132 (pidgin)
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Mandriva Update for pidgin MDVSA-2011:132 (pidgin)
Check for the Version of pidgin OpenVAS Vulnerability Test Mandriva Update for pidgin MDVSA-2011:132 pidgin Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...
Pidgin Libpurple Protocol Plugins Denial of Service Vulnerabilities (Windows)
This host is installed with Pidgin and is prone to denial of service vulnerabilities. OpenVAS Vulnerability Test $Id: gbpidginlibpurpleprotocolpluginsdosvulnwin.nasl 7024 2017-08-30 11:51:43Z teissa $ Pidgin Libpurple Protocol Plugins Denial of Service Vulnerabilities Windows Authors: Rachana...
Pidgin Libpurple Protocol Plugins Denial of Service Vulnerabilities - Windows
Pidgin is prone to denial of service vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
DEBIAN-CVE-2011-3184
The msnhttpconnparsedata function in httpconn.c in the MSN protocol plugin in libpurple in Pidgin before 2.10.0 does not properly handle HTTP 100 responses, which allows remote attackers to cause a denial of service incorrect memory access and application crash via vectors involving a crafted...
Code injection
The msnhttpconnparsedata function in httpconn.c in the MSN protocol plugin in libpurple in Pidgin before 2.10.0 does not properly handle HTTP 100 responses, which allows remote attackers to cause a denial of service incorrect memory access and application crash via vectors involving a crafted...
CVE-2011-3184
The msnhttpconnparsedata function in httpconn.c in the MSN protocol plugin in libpurple in Pidgin before 2.10.0 does not properly handle HTTP 100 responses, which allows remote attackers to cause a denial of service incorrect memory access and application crash via vectors involving a crafted...
CVE-2011-3184
CVE-2011-3184 affects Pidgin (libpurple) MSN protocol plugin prior to version 2.10.0. The msn_httpconn_parse_data function fails to handle HTTP 100 responses, enabling a remote attacker to trigger incorrect memory access and cause a denial of service (application crash). The Ubuntu advisories and...
CVE-2011-3184
The msnhttpconnparsedata function in httpconn.c in the MSN protocol plugin in libpurple in Pidgin before 2.10.0 does not properly handle HTTP 100 responses, which allows remote attackers to cause a denial of service incorrect memory access and application crash via vectors involving a crafted...
CVE-2011-3184
The msnhttpconnparsedata function in httpconn.c in the MSN protocol plugin in libpurple in Pidgin before 2.10.0 does not properly handle HTTP 100 responses, which allows remote attackers to cause a denial of service incorrect memory access and application crash via vectors involving a crafted...
Pidgin < 2.10.0 Multiple Vulnerabilities
The version of Pidgin installed on the remote host is earlier than 2.10.0. As such, it is potentially affected by the following issues : - A code execution vulnerability caused by clicking on a file:// URI received in an IM that Pidgin will attempt to execute. This can result in the execution of...
CentOS Update for finch CESA-2009:1218 centos5 i386
Check for the Version of finch OpenVAS Vulnerability Test CentOS Update for finch CESA-2009:1218 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...
CentOS Update for finch CESA-2009:1218 centos5 i386
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
DEBIAN-CVE-2010-4528
directconn.c in the MSN protocol plugin in libpurple 2.7.6 through 2.7.8 in Pidgin before 2.7.9 allows remote authenticated users to cause a denial of service NULL pointer dereference and application crash via a short p2pv2 packet in a DirectConnect aka direct connection session...
CVE-2010-4528
directconn.c in the MSN protocol plugin in libpurple 2.7.6 through 2.7.8 in Pidgin before 2.7.9 allows remote authenticated users to cause a denial of service NULL pointer dereference and application crash via a short p2pv2 packet in a DirectConnect aka direct connection session...