Download
| Alert*
oval:org.secpod.oval:def:1800185
CVE-2016-2365: Pidgin MXIT Markup Command Denial of Service Vulnerability. Fixed In Version: pidgin 2.11.0 oval:org.secpod.oval:def:40394 The host is installed with Pidgin before 2.11.0 and is prone to an elevation of privilege vulnerability. A flaw is present in the application, which fails to properly handle the password encryption. Successful exploitation allows attackers to decrypt hashed passwords by leveraging knowledge of clien ... oval:org.secpod.oval:def:1901029 The Mxit protocol uses weak encryption when encrypting user passwords, which might allow attackers to decrypt hashed passwords by leveraging knowledge of client registration codes or gain login access by eavesdropping on login messages and re-using the hashed passwords. |