Lucene search
K
AdiumAdium

6 matches found

CVE
CVE
added 2008/07/07 11:0 p.m.226 views

CVE-2008-2927

CVE-2008-2927 affects the MSN protocol handler in libpurple (msn/slplink.c and msnp9/slplink.c) used by Pidgin before 2.4.3 and Adium before 1.3. It is caused by multiple integer overflow/offset handling issues in msn_slplink_process_msg triggered by a malformed SLP message, enabling remote arbit...

6.8CVSS7.5AI score0.04332EPSS
CVE
CVE
added 2009/08/20 10:0 p.m.108 views

CVE-2009-2694

CVE-2009-2694 affects Libpurple’s MSN protocol handler (msn_slplink_process_msg) used by Pidgin (and Adium) before version 2.5.9. The flaw allows remote memory corruption via crafted MSNSLP messages, enabling arbitrary code execution or a crash. Root cause is an incomplete fix and improper handli...

10CVSS8.3AI score0.20295EPSS
CVE
CVE
added 2009/10/20 5:0 p.m.93 views

CVE-2009-3615

CVE-2009-3615 affects Pidgin’s OSCAR protocol (libpurple) in versions prior to 2.6.3 and Adium prior to 1.3.7. A remote attacker could supply crafted contact-list data (ICQ, possibly AIM) to trigger an invalid pointer dereference, causing the application to crash (denial of service). Several Ness...

5CVSS7.5AI score0.02661EPSS
CVE
CVE
added 2010/01/09 6:0 p.m.88 views

CVE-2010-0277

CVE-2010-0277 concerns the MSN protocol plugin (libpurple/Pidgin) where, prior to versions around 2.6.6, a malformed MSNSLP INVITE in an SLP message could trigger a remote crash/memory corruption. Affected products and timelines in the provided documents show this as a remote crash/DoS vulnerabil...

5CVSS8.3AI score0.02312EPSS
CVE
CVE
added 2010/01/09 6:0 p.m.86 views

CVE-2010-0013

CVE-2010-0013 affects Pidgin (libpurple) via the MSN protocol plugin, specifically the slp.c code path handling custom smiley requests. A directory traversal vulnerability in an MSN emoticon request (.. in filename) could allow remote attackers to read arbitrary files on the affected host. Root c...

7.5CVSS7.5AI score0.12496EPSS
CVE
CVE
added 2009/09/09 5:0 p.m.44 views

CVE-2008-7190

CVE-2008-7190 affects Adium before 1.2. Connected documents summarize an unspecified vulnerability linked to javascript: URLs with possibly cross-site scripting. However, there is no concrete root cause, impact details, exploit path, affected components beyond the product/version reference, or re...

10CVSS6.1AI score0.01219EPSS