Lucene search
+L

217 matches found

cve
cve
added 2012/03/15 10:0 a.m.76 views

CVE-2012-1178

CVE-2012-1178 affects Pidgin/libpurple MSN protocol plugin (oim.c: msn_oim_report_to_user). A remote server can crash the client by sending an OIM message that is not UTF-8 encoded, leading to a denial of service. Affected: Pidgin up to version prior to 2.10.2 (PIDGIN/ libpurple with MSN plugin)....

5CVSS6.2AI score0.02504EPSS
Exploits0References9Affected Software1
debiancve
debiancve
added 2012/03/15 10:0 a.m.30 views

CVE-2012-1178

The msnoimreporttouser function in oim.c in the MSN protocol plugin in libpurple in Pidgin before 2.10.2 allows remote servers to cause a denial of service application crash via an OIM message that lacks UTF-8 encoding...

5CVSS6.1AI score0.02504EPSS
Exploits0
ubuntucve
ubuntucve
added 2012/03/15 12:0 a.m.23 views

CVE-2012-1178

The msnoimreporttouser function in oim.c in the MSN protocol plugin in libpurple in Pidgin before 2.10.2 allows remote servers to cause a denial of service application crash via an OIM message that lacks UTF-8 encoding...

5CVSS5.9AI score0.02504EPSS
Exploits0References3
freebsd
freebsd
added 2012/03/15 12:0 a.m.33 views

libpurple -- Remote DoS via an MSN OIM message that lacks UTF-8 encoding

US-CERT reports: The msnoimreporttouser function in oim.c in the MSN protocol plugin in libpurple in Pidgin before 2.10.2 allows remote servers to cause a denial of service application crash via an OIM message that lacks UTF-8 encoding...

5CVSS6.2AI score0.02504EPSS
Exploits0
ubuntu
ubuntu
added 2011/11/21 7:56 p.m.56 views

USN-1273-1: Pidgin vulnerabilities

Marius Wachtler discovered that Pidgin incorrectly handled malformed YMSG messages in the Yahoo! protocol handler. A remote attacker could send a specially crafted message and cause Pidgin to crash, leading to a denial of service. This issue only affected Ubuntu 10.04 LTS and 10.10. CVE-2011-1091...

4.3CVSS5.4AI score0.03858EPSS
Exploits2
openvas
openvas
added 2011/09/12 12:0 a.m.45 views

Mandriva Update for pidgin MDVSA-2011:132 (pidgin)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

4.3CVSS7.4AI score0.03858EPSS
Exploits2References3
openvas
openvas
added 2011/09/12 12:0 a.m.42 views

Mandriva Update for pidgin MDVSA-2011:132 (pidgin)

Check for the Version of pidgin OpenVAS Vulnerability Test Mandriva Update for pidgin MDVSA-2011:132 pidgin Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

4.3CVSS0.2AI score0.03858EPSS
Exploits2References2
openvas
openvas
added 2011/09/09 12:0 a.m.33 views

Pidgin Libpurple Protocol Plugins Denial of Service Vulnerabilities (Windows)

This host is installed with Pidgin and is prone to denial of service vulnerabilities. OpenVAS Vulnerability Test $Id: gbpidginlibpurpleprotocolpluginsdosvulnwin.nasl 7024 2017-08-30 11:51:43Z teissa $ Pidgin Libpurple Protocol Plugins Denial of Service Vulnerabilities Windows Authors: Rachana...

9.3CVSS0.4AI score0.04794EPSS
Exploits1References5
openvas
openvas
added 2011/09/09 12:0 a.m.26 views

Pidgin Libpurple Protocol Plugins Denial of Service Vulnerabilities - Windows

Pidgin is prone to denial of service vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS6.3AI score0.04794EPSS
Exploits1References6
osv
osv
added 2011/08/29 5:55 p.m.4 views

DEBIAN-CVE-2011-3184

The msnhttpconnparsedata function in httpconn.c in the MSN protocol plugin in libpurple in Pidgin before 2.10.0 does not properly handle HTTP 100 responses, which allows remote attackers to cause a denial of service incorrect memory access and application crash via vectors involving a crafted...

4.3CVSS6.3AI score0.03858EPSS
Exploits0References1
prion
prion
added 2011/08/29 5:55 p.m.19 views

Code injection

The msnhttpconnparsedata function in httpconn.c in the MSN protocol plugin in libpurple in Pidgin before 2.10.0 does not properly handle HTTP 100 responses, which allows remote attackers to cause a denial of service incorrect memory access and application crash via vectors involving a crafted...

4.3CVSS6.9AI score0.03858EPSS
Exploits0References16Affected Software1
cvelist
cvelist
added 2011/08/29 5:0 p.m.32 views

CVE-2011-3184

The msnhttpconnparsedata function in httpconn.c in the MSN protocol plugin in libpurple in Pidgin before 2.10.0 does not properly handle HTTP 100 responses, which allows remote attackers to cause a denial of service incorrect memory access and application crash via vectors involving a crafted...

6.2AI score0.03858EPSS
Exploits0References16
cve
cve
added 2011/08/29 5:0 p.m.60 views

CVE-2011-3184

CVE-2011-3184 affects Pidgin (libpurple) MSN protocol plugin prior to version 2.10.0. The msn_httpconn_parse_data function fails to handle HTTP 100 responses, enabling a remote attacker to trigger incorrect memory access and cause a denial of service (application crash). The Ubuntu advisories and...

4.3CVSS6.3AI score0.03858EPSS
Exploits0References16Affected Software1
debiancve
debiancve
added 2011/08/29 5:0 p.m.45 views

CVE-2011-3184

The msnhttpconnparsedata function in httpconn.c in the MSN protocol plugin in libpurple in Pidgin before 2.10.0 does not properly handle HTTP 100 responses, which allows remote attackers to cause a denial of service incorrect memory access and application crash via vectors involving a crafted...

4.3CVSS6AI score0.03858EPSS
Exploits0
ubuntucve
ubuntucve
added 2011/08/29 12:0 a.m.30 views

CVE-2011-3184

The msnhttpconnparsedata function in httpconn.c in the MSN protocol plugin in libpurple in Pidgin before 2.10.0 does not properly handle HTTP 100 responses, which allows remote attackers to cause a denial of service incorrect memory access and application crash via vectors involving a crafted...

4.3CVSS5.9AI score0.03858EPSS
Exploits0References4
nessus
nessus
added 2011/08/22 12:0 a.m.36 views

Pidgin < 2.10.0 Multiple Vulnerabilities

The version of Pidgin installed on the remote host is earlier than 2.10.0. As such, it is potentially affected by the following issues : - A code execution vulnerability caused by clicking on a file:// URI received in an IM that Pidgin will attempt to execute. This can result in the execution of...

9.3CVSS6.1AI score0.04794EPSS
Exploits1References8
openvas
openvas
added 2011/08/09 12:0 a.m.14 views

CentOS Update for finch CESA-2009:1218 centos5 i386

Check for the Version of finch OpenVAS Vulnerability Test CentOS Update for finch CESA-2009:1218 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

10CVSS0.20295EPSS
Exploits8References2
openvas
openvas
added 2011/08/09 12:0 a.m.17 views

CentOS Update for finch CESA-2009:1218 centos5 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS5.2AI score0.20295EPSS
Exploits8References3
osv
osv
added 2011/01/07 12:0 p.m.2 views

DEBIAN-CVE-2010-4528

directconn.c in the MSN protocol plugin in libpurple 2.7.6 through 2.7.8 in Pidgin before 2.7.9 allows remote authenticated users to cause a denial of service NULL pointer dereference and application crash via a short p2pv2 packet in a DirectConnect aka direct connection session...

4CVSS6.6AI score0.02548EPSS
Exploits0References1
ubuntucve
ubuntucve
added 2011/01/07 12:0 p.m.18 views

CVE-2010-4528

directconn.c in the MSN protocol plugin in libpurple 2.7.6 through 2.7.8 in Pidgin before 2.7.9 allows remote authenticated users to cause a denial of service NULL pointer dereference and application crash via a short p2pv2 packet in a DirectConnect aka direct connection session...

4CVSS5.9AI score0.02548EPSS
Exploits0References2
Rows per page
Query Builder