Lucene search
K

226 matches found

Tenable Nessus
Tenable Nessus
added 2012/07/10 12:0 a.m.35 views

Ubuntu 10.04 LTS / 11.04 / 11.10 / 12.04 LTS : pidgin vulnerabilities (USN-1500-1)

Evgeny Boger discovered that Pidgin incorrectly handled buddy list messages in the AIM and ICQ protocol handlers. A remote attacker could send a specially crafted message and cause Pidgin to crash, leading to a denial of service. This issue only affected Ubuntu 10.04 LTS, 11.04 and 11.10...

7.5CVSS5.9AI score0.06402EPSS
Exploits7References10
Ubuntu
Ubuntu
added 2012/07/09 8:8 p.m.50 views

USN-1500-1: Pidgin vulnerabilities

Evgeny Boger discovered that Pidgin incorrectly handled buddy list messages in the AIM and ICQ protocol handlers. A remote attacker could send a specially crafted message and cause Pidgin to crash, leading to a denial of service. This issue only affected Ubuntu 10.04 LTS, 11.04 and 11.10...

7.5CVSS6.3AI score0.06402EPSS
Exploits7
OpenVAS
OpenVAS
added 2012/06/11 12:0 a.m.33 views

Fedora Update for pidgin FEDORA-2012-8686

Check for the Version of pidgin OpenVAS Vulnerability Test Fedora Update for pidgin FEDORA-2012-8686 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

5CVSS0.1AI score0.04697EPSS
Exploits5References2
Fedora
Fedora
added 2012/06/10 1:37 a.m.36 views

[SECURITY] Fedora 15 Update: pidgin-2.10.4-1.fc15

Pidgin allows you to talk to anyone using a variety of messaging protocols including AIM, MSN, Yahoo!, Jabber, Bonjour, Gadu-Gadu, ICQ, IRC, Novell Groupwise, QQ, Lotus Sametime, SILC, Simple and Zephyr. These protocols are implemented using a modular, easy to use design. To use a protocol, just...

5CVSS0.6AI score0.04697EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2012/01/10 12:0 a.m.18 views

SuSE 10 Security Update : pidgin (ZYPP Patch Number 7901)

Remote users could have crashed crash pidgin via ICQ, SILC, XMPP and Yahoo protocols CVE-2011-4601 / CVE-2011-4603 / CVE-2011-4602 / CVE-2011-1091. This has been fixed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...

5CVSS5.2AI score0.04697EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2012/01/10 12:0 a.m.21 views

SuSE 11.1 Security Update : pidgin (SAT Patch Number 5586)

Remote users could have crashed pidgin via ICQ, SILC, XMPP and Yahoo protocols CVE-2011-4601 / CVE-2011-4603 / CVE-2011-4602 / CVE-2011-1091. This has been fixed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 1...

5CVSS5.2AI score0.04697EPSS
Exploits1References12
OpenVAS
OpenVAS
added 2011/12/21 12:0 a.m.23 views

Pidgin XMPP And SILC Protocols Denial of Service Vulnerabilities (Windows)

This host is installed with Pidgin and is prone to denial of service vulnerabilities. OpenVAS Vulnerability Test $Id: secpodpidginxmppandsilcprotocoldosvulnwin.nasl 7019 2017-08-29 11:51:27Z teissa $ Pidgin XMPP And SILC Protocols Denial of Service Vulnerabilities Windows Authors: Rachana Shetty...

5CVSS0.1AI score0.04697EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2011/12/21 12:0 a.m.30 views

Pidgin XMPP And SILC Protocols Denial of Service Vulnerabilities - Windows

Pidgin is prone to denial of service vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.3AI score0.04697EPSS
Exploits1References5
securityvulns
securityvulns
added 2011/12/19 12:0 a.m.57 views

[ MDVSA-2011:183 ] pidgin

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2011:183 http://www.mandriva.com/security/ Package : pidgin Date : December 10, 2011 Affected: 2010.1, 2011., Enterprise Server 5.0 Problem Description: Multiple vulnerabilities has been discovered and corrected ...

5CVSS7.8AI score0.04697EPSS
Exploits3
securityvulns
securityvulns
added 2011/12/19 12:0 a.m.40 views

libpurple / Pidgin DoS

Crash on SILC protocol parsing, crash on OSCAR parsing AIM, ICQ...

5CVSS2.3AI score0.04697EPSS
Exploits3References2Affected Software1
NVD
NVD
added 2011/12/17 3:54 a.m.22 views

CVE-2011-4603

The silcchannelmessage function in ops.c in the SILC protocol plugin in libpurple in Pidgin before 2.10.1 does not perform the expected UTF-8 validation on message data, which allows remote attackers to cause a denial of service application crash via a crafted message, a different vulnerability...

5CVSS7.2AI score0.03734EPSS
Exploits0References8
OSV
OSV
added 2011/12/17 3:54 a.m.5 views

DEBIAN-CVE-2011-4603

The silcchannelmessage function in ops.c in the SILC protocol plugin in libpurple in Pidgin before 2.10.1 does not perform the expected UTF-8 validation on message data, which allows remote attackers to cause a denial of service application crash via a crafted message, a different vulnerability...

5CVSS6.4AI score0.03734EPSS
Exploits0References1
Prion
Prion
added 2011/12/17 3:54 a.m.25 views

Design/Logic Flaw

The silcchannelmessage function in ops.c in the SILC protocol plugin in libpurple in Pidgin before 2.10.1 does not perform the expected UTF-8 validation on message data, which allows remote attackers to cause a denial of service application crash via a crafted message, a different vulnerability...

5CVSS6.6AI score0.03734EPSS
Exploits2References8Affected Software1
Cvelist
Cvelist
added 2011/12/17 2:0 a.m.28 views

CVE-2011-4603

The silcchannelmessage function in ops.c in the SILC protocol plugin in libpurple in Pidgin before 2.10.1 does not perform the expected UTF-8 validation on message data, which allows remote attackers to cause a denial of service application crash via a crafted message, a different vulnerability...

7.3AI score0.03734EPSS
Exploits0References8
CVE
CVE
added 2011/12/17 2:0 a.m.57 views

CVE-2011-4603

CVE-2011-4603 affects Pidgin (libpurple SILC protocol plugin). The silc_channel_message function in ops.c did not perform proper UTF-8 validation on incoming SILC messages, allowing a remote attacker to trigger a denial of service (application crash). Public advisories and patch histories show Op...

5CVSS6.4AI score0.03734EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVE
added 2011/12/17 2:0 a.m.27 views

CVE-2011-4603

The silcchannelmessage function in ops.c in the SILC protocol plugin in libpurple in Pidgin before 2.10.1 does not perform the expected UTF-8 validation on message data, which allows remote attackers to cause a denial of service application crash via a crafted message, a different vulnerability...

5CVSS6.1AI score0.03734EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2011/12/16 12:0 a.m.27 views

CVE-2011-4603

The silcchannelmessage function in ops.c in the SILC protocol plugin in libpurple in Pidgin before 2.10.1 does not perform the expected UTF-8 validation on message data, which allows remote attackers to cause a denial of service application crash via a crafted message, a different vulnerability...

5CVSS5.9AI score0.03734EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2011/12/16 12:0 a.m.26 views

RedHat Update for pidgin RHSA-2011:1820-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

5CVSS6.5AI score0.04697EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2011/12/15 12:0 a.m.35 views

Pidgin < 2.10.1 Multiple Vulnerabilities

The version of Pidgin installed on the remote host is earlier than 2.10.1 and is potentially affected by the following issues : - A failure to validate input during the processing of UTF-8 SILC protocol messages can cause the application to crash. CVE-2011-3594, CVE-2011-4603 - A failure to...

5CVSS5.5AI score0.04697EPSS
Exploits3References9
Tenable Nessus
Tenable Nessus
added 2011/12/15 12:0 a.m.37 views

RHEL 4 / 5 : pidgin (RHSA-2011:1820)

The remote Redhat Enterprise Linux 4 / 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:1820 advisory. - pidgin libpurple: Invalid UTF-8 string handling in OSCAR messages CVE-2011-4601 - pidgin: Multiple NULL pointer deference flaws by...

5CVSS5.5AI score0.04697EPSS
Exploits1References9
Rows per page
Query Builder