39 matches found
EUVD-2011-4527
Malware in sbrugna...
EUVD-2011-3553
Malware in sbrugna...
SUSE CVE-2003-1439
Secure Internet Live Conferencing SILC 0.9.11 and 0.9.12 stores passwords and sessions in plaintext in memory, which could allow local users to obtain sensitive information...
Denial Of Service (DoS)
pidgin is vulnerable to denial of service DoS. The vulnerability exists as an input sanitization flaw was found in the way the Pidgin SILC Secure Internet Live Conferencing protocol plug-in escaped certain UTF-8 characters. A remote attacker could use this flaw to crash Pidgin via a...
openSUSE Security Update : finch (openSUSE-SU-2011:1291-1)
This update fixes the following security issues : - 722199: libpurple vulnerability in SILC protocol handling CVE-2011-3594 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update finch-5485. The text...
openSUSE Security Update : finch (openSUSE-SU-2011:1291-1)
This update fixes the following security issues : - 722199: libpurple vulnerability in SILC protocol handling CVE-2011-3594 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update finch-5485. The text...
Oracle Linux 4 : pidgin (ELSA-2008-1023)
From Red Hat Security Advisory 2008:1023 : Updated Pidgin packages that fix several security issues and bugs are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Pidgin is a multi-protocol...
Scientific Linux Security Update : pidgin on SL4.x, SL5.x i386/x86_64
A denial-of-service flaw was found in Pidgin's MSN protocol handler. If a remote user was able to send, and the Pidgin user accepted, a carefully-crafted file request, it could result in Pidgin crashing. CVE-2008-2955 A denial-of-service flaw was found in Pidgin's Universal Plug and Play UPnP...
Pidgin XMPP And SILC Protocols Denial of Service Vulnerabilities (Windows)
This host is installed with Pidgin and is prone to denial of service vulnerabilities. OpenVAS Vulnerability Test $Id: secpodpidginxmppandsilcprotocoldosvulnwin.nasl 7019 2017-08-29 11:51:27Z teissa $ Pidgin XMPP And SILC Protocols Denial of Service Vulnerabilities Windows Authors: Rachana Shetty...
libpurple / Pidgin DoS
Crash on SILC protocol parsing, crash on OSCAR parsing AIM, ICQ...
DEBIAN-CVE-2011-4603
The silcchannelmessage function in ops.c in the SILC protocol plugin in libpurple in Pidgin before 2.10.1 does not perform the expected UTF-8 validation on message data, which allows remote attackers to cause a denial of service application crash via a crafted message, a different vulnerability...
CVE-2011-4603
The silcchannelmessage function in ops.c in the SILC protocol plugin in libpurple in Pidgin before 2.10.1 does not perform the expected UTF-8 validation on message data, which allows remote attackers to cause a denial of service application crash via a crafted message, a different vulnerability...
Design/Logic Flaw
The silcchannelmessage function in ops.c in the SILC protocol plugin in libpurple in Pidgin before 2.10.1 does not perform the expected UTF-8 validation on message data, which allows remote attackers to cause a denial of service application crash via a crafted message, a different vulnerability...
CVE-2011-4603
The silcchannelmessage function in ops.c in the SILC protocol plugin in libpurple in Pidgin before 2.10.1 does not perform the expected UTF-8 validation on message data, which allows remote attackers to cause a denial of service application crash via a crafted message, a different vulnerability...
CVE-2011-4603
CVE-2011-4603 affects Pidgin (libpurple SILC protocol plugin). The silc_channel_message function in ops.c did not perform proper UTF-8 validation on incoming SILC messages, allowing a remote attacker to trigger a denial of service (application crash). Public advisories and patch histories show Op...
CVE-2011-4603
The silcchannelmessage function in ops.c in the SILC protocol plugin in libpurple in Pidgin before 2.10.1 does not perform the expected UTF-8 validation on message data, which allows remote attackers to cause a denial of service application crash via a crafted message, a different vulnerability...
CVE-2011-4603
The silcchannelmessage function in ops.c in the SILC protocol plugin in libpurple in Pidgin before 2.10.1 does not perform the expected UTF-8 validation on message data, which allows remote attackers to cause a denial of service application crash via a crafted message, a different vulnerability...
Pidgin < 2.10.1 Multiple Vulnerabilities
The version of Pidgin installed on the remote host is earlier than 2.10.1 and is potentially affected by the following issues : - A failure to validate input during the processing of UTF-8 SILC protocol messages can cause the application to crash. CVE-2011-3594, CVE-2011-4603 - A failure to...
pidgin: SILC remote crash on channel messages
The silcchannelmessage function in ops.c in the SILC protocol plugin in libpurple in Pidgin before 2.10.1 does not perform the expected UTF-8 validation on message data, which allows remote attackers to cause a denial of service application crash via a crafted message, a different vulnerability...
SuSE 11.1 Security Update : pidgin, libpurple and finch (SAT Patch Number 5389)
This update fixes the following security issues : - 604225: MSN emoticon DoS. CVE-2010-1624 - 648273: multiple NULL pointer dereference weaknesses. CVE-2010-3711 - 722199: vulnerability in SILC protocol handling CVE-2011-3594 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive te...