SUSE CVE-2009-2694

The msnslplinkprocessmsg function in libpurple/protocols/msn/slplink.c in libpurple, as used in Pidgin formerly Gaim before 2.5.9 and Adium 1.3.5 and earlier, allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash by sending multiple...

Scientific Linux Security Update : pidgin on SL4.x, SL5.x i386/x86_64

CVE-2009-3026 pidgin: ignores SSL/TLS requirements with old jabber servers CVE-2009-2703 Pidgin: NULL pointer dereference by handling IRC topics DoS CVE-2009-3083 Pidgin: NULL pointer dereference by processing incomplete MSN SLP invite DoS CVE-2009-3085 Pidgin: NULL pointer dereference by...

SuSE 10 Security Update : gaim (ZYPP Patch Number 6461)

This update of gaim fixes a remote arbitrary code execution vulnerability in MSN SLP packet processing code. CORE-2009-0727 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if...

SuSE 10 Security Update : pidgin, gaim and finch (ZYPP Patch Number 5573)

specially crafted MSN SLP messages could cause an integer overflow in pidgin. Attackers could potentially exploit that to execute arbitrary code. CVE-2008-2927 - overly long file names in MSN file transfers could crash pidgin. CVE-2008-2955 - SSL certifcates were not verfied. Therefore piding...

SuSE 10 Security Update : pidgin (ZYPP Patch Number 6463)

This update of pidgin fixes a remote arbitrary code execution vulnerability in MSN SLP packet processing code. CORE-2009-0727 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if...

Pidgin Libpurple库MSN-SLP表情符目录遍历漏洞

BUGTRAQ ID: 37524 Pidgin是支持多种协议的即时通讯客户端。 Pidgin的Libpurple库在实现自定义表情符功能时存在安全漏洞，远程攻击者可以通过提交包含有目录遍历序列的MSN表情符请求读取任意文件的内容。以下是libpurple/protocols/msn/slp.c中的有漏洞代码段： static void gotsessionreqMsnSlpCall slpcall, const char branch, const char eufguid, const char context gboolean accepted = FALSE; if...

openSUSE 10 Security Update : finch (finch-6465)

This update of pidgin fixes a remote arbitrary code execution vulnerability in MSN SLP packet processing code. CORE-2009-0727 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update finch-6465. The te...

SuSE 11 Security Update : Pidgin (SAT Patch Number 1207)

This update of pidgin fixes a remote arbitrary code execution vulnerability in MSN SLP packet processing code. CORE-2009-0727 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself...

SuSE 11 Security Update : pidgin (SAT Patch Number 1245)

This update of pidgin fixes a remote arbitrary code execution vulnerability in MSN SLP packet processing code. CORE-2009-0727 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself...

openSUSE Security Update : finch (finch-1248)

This update of pidgin fixes a remote arbitrary code execution vulnerability in MSN SLP packet processing code. CORE-2009-0727 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update finch-1248. The te...

Pidgin MSN SLP Packets Denial Of Service Vulnerability (Windows)

This host has Pidgin installed and is prone to Denial of Service vulnerability. OpenVAS Vulnerability Test $Id: secpodpidginmsnslpdosvulnwin.nasl 5122 2017-01-27 12:16:00Z teissa $ Pidgin MSN SLP Packets Denial Of Service Vulnerability Windows Authors: Nikita MR Copyright: Copyright c 2009 SecPod...

libpurple / Pidgin buffer overflow

Buffer overflow on MSN SLP messages parsing...

Pidgin Multiple Buffer Overflow Vulnerabilities (Linux)

This host has installed pidgin and is prone to Multiple Buffer Overflow Vulnerabilities OpenVAS Vulnerability Test $Id: secpodpidginmulbofvulnlin.nasl 5122 2017-01-27 12:16:00Z teissa $ Pidgin Multiple Buffer Overflow Vulnerabilities Linux Authors: Antu Sanadi Copyright: Copyright c 2009 SecPod,...

Pidgin Multiple Buffer Overflow Vulnerabilities - Linux

This host has installed pidgin and is prone to Multiple Buffer Overflow Vulnerabilities SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Gaim: Multiple vulnerabilities

Background Gaim is a full featured instant messaging client which handls a variety of instant messaging protocols. Description A possible buffer overflow exists in the code processing MSN SLP messages CAN-2004-0891. memcpy was used without validating the size of the buffer, and an incorrect buffe...