217 matches found
RedHat Update for pidgin RHSA-2010:0115-01
Check for the Version of pidgin OpenVAS Vulnerability Test RedHat Update for pidgin RHSA-2010:0115-01 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...
Mandriva Linux Security Advisory : pidgin (MDVSA-2010:041)
Multiple security vulnerabilities has been identified and fixed in pidgin : Certain malformed SLP messages can trigger a crash because the MSN protocol plugin fails to check that all pieces of the message are set correctly CVE-2010-0277. In a user in a multi-user chat room has a nickname containi...
Moderate: Red Hat Security Advisory: pidgin security update
Updated pidgin packages that fix three security issues are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Pidgin is an instant messaging program which can log in to multiple accounts on...
pidgin MSN protocol plugin memory corruption
slp.c in the MSN protocol plugin in libpurple in Pidgin before 2.6.6, including 2.6.4, and Adium 1.3.8 allows remote attackers to cause a denial of service memory corruption and application crash or possibly have unspecified other impact via a malformed MSNSLP INVITE request in an SLP message, a...
[Backports-security-announce] Security Update for pidgin
Jan Wagner uploaded a new package for pidgin which fixed the following security problem: CVE-2010-00131 and Debian Bug 5632062 It was discovered that Pidgin did not properly handle custom smiley requests in the MSN protocol handler. A remote attacker could send a specially crafted filename in a...
[slackware-security] pidgin
New pidgin packages are available for Slackware 12.0, 12.1, 12.2, 13.0, and -current to fix a security issue. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2010-0013 Here are the details from the Slackware 13.0...
Pidgin MSN Protocol Plugin DoS Vulnerability - Windows
Pidgin is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Pidgin < 2.6.6 MSN Protocol Plugin Denial Of Service Vulnerability - Linux
Pidgin is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:pidgin:pidgin";...
Pidgin MSN Custom Smileys File Disclosure Vulnerability - Windows
Pidgin is prone to a file disclosure vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Pidgin MSN Protocol Plugin Denial Of Service Vulnerability (Windows)
This host has Pidgin installed and is prone to Denial Of Service vulnerability OpenVAS Vulnerability Test $Id: gbpidginmsnslpdosvulnwin.nasl 5660 2017-03-21 11:29:28Z cfi $ Pidgin MSN Protocol Plugin Denial Of Service Vulnerability Windows Authors: Antu Sanadi Copyright: Copyright c 2010 Greenbon...
Pidgin MSN Custom Smileys File Disclosure Vulnerability (Windows)
This host has Pidgin installed and is prone to File Disclosure vulnerability OpenVAS Vulnerability Test $Id: gbpidginmsnslpdirtravvulnwin.nasl 5373 2017-02-20 16:27:48Z teissa $ Pidgin MSN Custom Smileys File Disclosure Vulnerability Windows Authors: Antu Sanadi Copyright: Copyright c 2010...
Mandriva Update for pidgin MDVSA-2010:002 (pidgin)
Check for the Version of pidgin OpenVAS Vulnerability Test Mandriva Update for pidgin MDVSA-2010:002 pidgin Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...
pidgin/libpurple: MSN custom smiley request directory traversal file disclosure
Directory traversal vulnerability in slp.c in the MSN protocol plugin in libpurple in Pidgin 2.6.4 and Adium 1.3.8 allows remote attackers to read arbitrary files via a .. dot dot in an application/x-msnmsgrp2p MSN emoticon aka custom smiley request, a related issue to CVE-2004-0122. NOTE: it cou...
[ MDVSA-2010:002 ] pidgin
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2010:002 http://www.mandriva.com/security/ Package : pidgin Date : January 11, 2010 Affected: 2010.0 Problem Description: A security vulnerability has been identified and fixed in pidgin: Directory traversal...
Mandriva Linux Security Advisory : pidgin (MDVSA-2010:001)
Security vulnerabilities has been identified and fixed in pidgin : The OSCAR protocol plugin in libpurple in Pidgin before 2.6.3 and Adium before 1.3.7 allows remote attackers to cause a denial of service application crash via crafted contact-list data for 1 ICQ and possibly 2 AIM, as demonstrate...
CVE-2010-0013
Directory traversal vulnerability in slp.c in the MSN protocol plugin in libpurple in Pidgin 2.6.4 and Adium 1.3.8 allows remote attackers to read arbitrary files via a .. dot dot in an application/x-msnmsgrp2p MSN emoticon aka custom smiley request, a related issue to CVE-2004-0122. NOTE: it cou...
CVE-2010-0277
slp.c in the MSN protocol plugin in libpurple in Pidgin before 2.6.6, including 2.6.4, and Adium 1.3.8 allows remote attackers to cause a denial of service memory corruption and application crash or possibly have unspecified other impact via a malformed MSNSLP INVITE request in an SLP message, a...
Directory traversal
Directory traversal vulnerability in slp.c in the MSN protocol plugin in libpurple in Pidgin 2.6.4 and Adium 1.3.8 allows remote attackers to read arbitrary files via a .. dot dot in an application/x-msnmsgrp2p MSN emoticon aka custom smiley request, a related issue to CVE-2004-0122. NOTE: it cou...
Memory corruption
slp.c in the MSN protocol plugin in libpurple in Pidgin before 2.6.6, including 2.6.4, and Adium 1.3.8 allows remote attackers to cause a denial of service memory corruption and application crash or possibly have unspecified other impact via a malformed MSNSLP INVITE request in an SLP message, a...
CVE-2010-0013
Directory traversal vulnerability in slp.c in the MSN protocol plugin in libpurple in Pidgin 2.6.4 and Adium 1.3.8 allows remote attackers to read arbitrary files via a .. dot dot in an application/x-msnmsgrp2p MSN emoticon aka custom smiley request, a related issue to CVE-2004-0122. NOTE: it cou...