[Forgot Password]
Login  Register Subscribe

23631

 
 

122183

 
 

98060

 
 

909

 
 

79198

 
 

109

Paid content will be excluded from the download.


Download | Alert*
OVAL

USN-781-1 -- pidgin vulnerabilities

ID: oval:org.secpod.oval:def:700288Date: (C)2011-05-13   (M)2017-11-27
Class: PATCHFamily: unix




It was discovered that Pidgin did not properly handle certain malformed messages when sending a file using the XMPP protocol handler. If a user were tricked into sending a file, a remote attacker could send a specially crafted response and cause Pidgin to crash, or possibly execute arbitrary code with user privileges. It was discovered that Pidgin did not properly handle certain malformed messages in the QQ protocol handler. A remote attacker could send a specially crafted message and cause Pidgin to crash. This issue only affected Ubuntu 8.10 and 9.04. It was discovered that Pidgin did not properly handle certain malformed messages in the XMPP and Sametime protocol handlers. A remote attacker could send a specially crafted message and cause Pidgin to crash. It was discovered that Pidgin did not properly handle certain malformed messages in the MSN protocol handler. A remote attacker could send a specially crafted message and possibly execute arbitrary code with user privileges

Platform:
Ubuntu 8.10
Ubuntu 8.04
Ubuntu 9.04
Product:
pidgin
Reference:
USN-781-1
CVE-2009-1373
CVE-2009-1374
CVE-2009-1375
CVE-2009-1376
CVE    4
CVE-2009-1374
CVE-2009-1375
CVE-2009-1373
CVE-2009-1376
...
CPE    3
cpe:/o:ubuntu:ubuntu_linux:8.04
cpe:/o:ubuntu:ubuntu_linux:8.10
cpe:/o:ubuntu:ubuntu_linux:9.04

© 2013 SecPod Technologies