19 matches found
SUSE CVE-2013-0273
sametime.c in the Sametime protocol plugin in libpurple in Pidgin before 2.10.7 does not properly terminate long user IDs, which allows remote servers to cause a denial of service application crash via a crafted packet...
pidgin: Meanwhile protocol missing nul termination of long Lotus Sametime usernames
sametime.c in the Sametime protocol plugin in libpurple in Pidgin before 2.10.7 does not properly terminate long user IDs, which allows remote servers to cause a denial of service application crash via a crafted packet...
SuSE 10 Security Update : pidgin (ZYPP Patch Number 8475)
pidgin was updated to fix 4 security issues : - Fixed a crash when receiving UPnP responses with abnormally long values. CVE-2013-0274, bnc804742 - Fixed a crash in Sametime protocol when a malicious server sends us an abnormally long user ID. CVE-2013-0273, bnc804742 - Fixed a bug where the MXit...
Ubuntu 10.04 LTS / 11.10 / 12.04 LTS / 12.10 : pidgin vulnerabilities (USN-1746-1)
Chris Wysopal discovered that Pidgin incorrectly handled file transfers in the MXit protocol handler. A remote attacker could use this issue to create or overwrite arbitrary files. This issue only affected Ubuntu 11.10, Ubuntu 12.04 LTS and Ubuntu 12.10. CVE-2013-0271 It was discovered that Pidgi...
CVE-2013-0273
sametime.c in the Sametime protocol plugin in libpurple in Pidgin before 2.10.7 does not properly terminate long user IDs, which allows remote servers to cause a denial of service application crash via a crafted packet...
Code injection
sametime.c in the Sametime protocol plugin in libpurple in Pidgin before 2.10.7 does not properly terminate long user IDs, which allows remote servers to cause a denial of service application crash via a crafted packet...
CVE-2013-0273
sametime.c in the Sametime protocol plugin in libpurple in Pidgin before 2.10.7 does not properly terminate long user IDs, which allows remote servers to cause a denial of service application crash via a crafted packet...
CVE-2013-0273
CVE-2013-0273 affects sametime.c in the Sametime protocol plugin of libpurple/Pidgin up to version 2.10.7. The issue arises from improper termination of long user IDs, enabling a remote server to crash the application via a crafted packet (DoS). Public references in the connected documents confir...
CVE-2013-0273
sametime.c in the Sametime protocol plugin in libpurple in Pidgin before 2.10.7 does not properly terminate long user IDs, which allows remote servers to cause a denial of service application crash via a crafted packet...
CVE-2013-0273
sametime.c in the Sametime protocol plugin in libpurple in Pidgin before 2.10.7 does not properly terminate long user IDs, which allows remote servers to cause a denial of service application crash via a crafted packet...
Mandriva Linux Security Advisory : pidgin (MDVSA-2009:321)
Security vulnerabilities has been identified and fixed in pidgin : The NSS plugin in libpurple in Pidgin 2.4.1 does not verify SSL certificates, which makes it easier for remote attackers to trick a user into accepting an invalid server certificate for a spoofed service. CVE-2008-3532 Pidgin 2.4....
Mandrake Security Advisory MDVSA-2009:147 (pidgin)
The remote host is missing an update to pidgin announced via advisory MDVSA-2009:147. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...
Ubuntu USN-781-1 (pidgin)
The remote host is missing an update to pidgin announced via advisory USN-781-1. OpenVAS Vulnerability Test $Id: ubuntu7811.nasl 7969 2017-12-01 09:23:16Z santu $ $Id: ubuntu7811.nasl 7969 2017-12-01 09:23:16Z santu $ Description: Auto-generated from advisory USN-781-1 pidgin Authors: Thomas Rein...
CVE-2009-1375
The PurpleCircBuffer implementation in Pidgin formerly Gaim before 2.5.6 does not properly maintain a certain buffer, which allows remote attackers to cause a denial of service memory corruption and application crash via vectors involving the 1 XMPP or 2 Sametime protocol...
CVE-2009-1375
The PurpleCircBuffer implementation in Pidgin formerly Gaim before 2.5.6 does not properly maintain a certain buffer, which allows remote attackers to cause a denial of service memory corruption and application crash via vectors involving the 1 XMPP or 2 Sametime protocol...
Memory corruption
The PurpleCircBuffer implementation in Pidgin formerly Gaim before 2.5.6 does not properly maintain a certain buffer, which allows remote attackers to cause a denial of service memory corruption and application crash via vectors involving the 1 XMPP or 2 Sametime protocol...
CVE-2009-1375
CVE-2009-1375 concerns the PurpleCircBuffer expansion in Pidgin (formerly Gaim) up to 2.5.6. When the buffer is full, data can be corrupted, potentially causing a crash or misleading UI. Connected advisories indicate pidgin updates (e.g., to version 2.6.x) fix this and related issues (XMPP/Sameti...
CVE-2009-1375
The PurpleCircBuffer implementation in Pidgin formerly Gaim before 2.5.6 does not properly maintain a certain buffer, which allows remote attackers to cause a denial of service memory corruption and application crash via vectors involving the 1 XMPP or 2 Sametime protocol...
CVE-2009-1375
The PurpleCircBuffer implementation in Pidgin formerly Gaim before 2.5.6 does not properly maintain a certain buffer, which allows remote attackers to cause a denial of service memory corruption and application crash via vectors involving the 1 XMPP or 2 Sametime protocol...