марк спенсер, шон иган и др.

Communicationsoss-project

Cumulative CVEs

Monthly snapshots

#16

Peak rank

Trend history

Full timeline

Top products

pidgin10

Latest CVEs

See all →

The 12 most recently published vulnerabilities affecting марк спенсер, шон иган и др..

CVE-2022-26491An issue was discovered in Pidgin before 2.14.9. A remote attacker who can spoof DNS responses can redirect a client connection to a malicious server. The client will perform TLS certificate verifi...5.9May 31, 2022
CVE-2016-2368Multiple memory corruption vulnerabilities exist in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent via the server could result in multiple buffer overflows, potential...8.1Jan 6, 2017
CVE-2013-6490The SIMPLE protocol functionality in Pidgin before 2.10.8 allows remote attackers to have an unspecified impact via a negative Content-Length header, which triggers a buffer overflow.10.0Feb 6, 2014
CVE-2013-6489Integer signedness error in the MXit functionality in Pidgin before 2.10.8 allows remote attackers to cause a denial of service (segmentation fault) via a crafted emoticon value, which triggers an ...5.0Feb 6, 2014
CVE-2013-6487Integer overflow in libpurple/protocols/gg/lib/http.c in the Gadu-Gadu (gg) parser in Pidgin before 2.10.8 allows remote attackers to have an unspecified impact via a large Content-Length value, wh...7.5Feb 6, 2014
CVE-2013-6482Pidgin before 2.10.8 allows remote MSN servers to cause a denial of service (NULL pointer dereference and crash) via a crafted (1) SOAP response, (2) OIM XML response, or (3) Content-Length header.5.0Feb 6, 2014
CVE-2013-6481libpurple/protocols/yahoo/libymsg.c in Pidgin before 2.10.8 allows remote attackers to cause a denial of service (crash) via a Yahoo! P2P message with a crafted length field, which triggers a buffe...5.0Feb 6, 2014
CVE-2013-6485Buffer overflow in util.c in libpurple in Pidgin before 2.10.8 allows remote HTTP servers to cause a denial of service (application crash) or possibly have unspecified other impact via an invalid c...5.0Feb 6, 2014
CVE-2013-6484The STUN protocol implementation in libpurple in Pidgin before 2.10.8 allows remote STUN servers to cause a denial of service (out-of-bounds write operation and application crash) by triggering a s...5.0Feb 6, 2014
CVE-2013-6483The XMPP protocol plugin in libpurple in Pidgin before 2.10.8 does not properly determine whether the from address in an iq reply is consistent with the to address in an iq request, which allows re...6.4Feb 6, 2014
CVE-2013-6479util.c in libpurple in Pidgin before 2.10.8 does not properly allocate memory for HTTP responses that are inconsistent with the Content-Length header, which allows remote HTTP servers to cause a de...5.0Feb 6, 2014
CVE-2014-0020The IRC protocol plugin in libpurple in Pidgin before 2.10.8 does not validate argument counts, which allows remote IRC servers to cause a denial of service (application crash) via a crafted message.5.0Feb 6, 2014