Download
| Alert*
|
oval:org.secpod.oval:def:52794
pidgin: graphical multi-protocol instant messaging client for X Pidgin could be made to crash or run programs if it received specially crafted network traffic. oval:org.secpod.oval:def:1800185 CVE-2016-2365: Pidgin MXIT Markup Command Denial of Service Vulnerability. Fixed In Version: pidgin 2.11.0 oval:org.secpod.oval:def:602558 Yves Younan of Cisco Talos discovered several vulnerabilities in the MXit protocol support in pidgin, a multi-protocol instant messaging client. A remote attacker can take advantage of these flaws to cause a denial of service , overwrite files, information disclosure, or potentially to execute arbit ... oval:org.secpod.oval:def:703204 pidgin: graphical multi-protocol instant messaging client for X Pidgin could be made to crash or run programs if it received specially crafted network traffic. oval:org.secpod.oval:def:40390 The host is installed with Pidgin before 2.11.0 and is prone to an out-of-bounds read vulnerability. A flaw is present in the application, which fails to properly handle the MXIT contact information. Successful exploitation allows attackers to cause an out-of-bounds read. |
