Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pidgin pidgin vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2015-8833
Use-after-free vulnerability in the create_smp_dialog function in gtk-dialog.c in the Off-the-Record Messaging (OTR) pidgin-otr plugin prior to 4.0.2 for Pidgin allows remote malicious users to execute arbitrary code via vectors related to the "Authenticate buddy" menu ...
Cypherpunks Pidgin-otr
10
CVSSv2
CVE-2009-2694
The msn_slplink_process_msg function in libpurple/protocols/msn/slplink.c in libpurple, as used in Pidgin (formerly Gaim) prior to 2.5.9 and Adium 1.3.5 and previous versions, allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption ...
Pidgin Pidgin 2.0.1
Pidgin Pidgin 2.0.2
Pidgin Pidgin 2.3.1
Pidgin Pidgin 2.4.0
Pidgin Pidgin 2.5.3
Pidgin Pidgin 2.5.4
Adium Adium 1.3.3
Adium Adium 1.3.4
Pidgin Pidgin 2.0.0
Pidgin Pidgin 2.2.2
Pidgin Pidgin 2.3.0
Pidgin Pidgin 2.5.1
Pidgin Pidgin 2.5.2
Adium Adium 1.3.1
Adium Adium 1.3.2
Pidgin Pidgin 2.1.0
Pidgin Pidgin 2.1.1
Pidgin Pidgin 2.4.1
Pidgin Pidgin 2.4.2
Pidgin Pidgin 2.5.6
Pidgin Pidgin 2.5.7
Pidgin Pidgin
1 EDB exploit
9.3
CVSSv2
CVE-2013-6486
gtkutils.c in Pidgin prior to 2.10.8 on Windows allows user-assisted remote malicious users to execute arbitrary programs via a message containing a file: URL that is improperly handled during construction of an explorer.exe command. NOTE: this vulnerability exists because of an ...
Pidgin Pidgin 2.9.0
Pidgin Pidgin 2.8.0
Pidgin Pidgin 2.7.3
Pidgin Pidgin 2.7.2
Pidgin Pidgin 2.6.3
Pidgin Pidgin 2.6.2
Pidgin Pidgin 2.5.5
Pidgin Pidgin 2.5.4
Pidgin Pidgin 2.4.1
Pidgin Pidgin 2.4.0
Pidgin Pidgin 2.10.4
Pidgin Pidgin 2.10.3
Pidgin Pidgin 2.0.1
Pidgin Pidgin 2.0.0
Pidgin Pidgin 2.7.5
Pidgin Pidgin 2.7.4
Pidgin Pidgin 2.6.5
Pidgin Pidgin 2.6.4
Pidgin Pidgin 2.5.7
Pidgin Pidgin 2.5.6
Pidgin Pidgin 2.4.3
Pidgin Pidgin 2.4.2
9.3
CVSSv2
CVE-2011-3185
gtkutils.c in Pidgin prior to 2.10.0 on Windows allows user-assisted remote malicious users to execute arbitrary programs via a file: URL in a message.
Pidgin Pidgin 2.0.2
Pidgin Pidgin 2.1.0
Pidgin Pidgin 2.4.1
Pidgin Pidgin 2.4.2
Pidgin Pidgin 2.5.5
Pidgin Pidgin 2.5.6
Pidgin Pidgin 2.6.4
Pidgin Pidgin 2.6.5
Pidgin Pidgin 2.7.6
Pidgin Pidgin 2.7.7
Pidgin Pidgin 2.2.1
Pidgin Pidgin 2.2.2
Pidgin Pidgin 2.3.0
Pidgin Pidgin 2.5.1
Pidgin Pidgin 2.5.2
Pidgin Pidgin 2.5.9
Pidgin Pidgin 2.6.0
Pidgin Pidgin 2.7.2
Pidgin Pidgin 2.7.3
Pidgin Pidgin 2.7.10
Pidgin Pidgin 2.7.11
Pidgin Pidgin 2.0.0
9.3
CVSSv2
CVE-2009-2404
Heap-based buffer overflow in a regular-expression parser in Mozilla Network Security Services (NSS) prior to 3.12.3, as used in Firefox, Thunderbird, SeaMonkey, Evolution, Pidgin, and AOL Instant Messenger (AIM), allows remote SSL servers to cause a denial of service (applicatio...
Mozilla Network Security Services 3.12.3
9.3
CVSSv2
CVE-2009-1376
Multiple integer overflows in the msn_slplink_process_msg functions in the MSN protocol handler in (1) libpurple/protocols/msn/slplink.c and (2) libpurple/protocols/msnp9/slplink.c in Pidgin (formerly Gaim) prior to 2.5.6 on 32-bit platforms allow remote malicious users to execut...
Pidgin Pidgin 2.5.2
Pidgin Pidgin 2.5.3
Pidgin Pidgin 2.5.0
Pidgin Pidgin 2.4.2
Pidgin Pidgin
Pidgin Pidgin 2.4.0
Pidgin Pidgin 2.4.3
Pidgin Pidgin 2.5.4
Pidgin Pidgin 2.4.1
1 EDB exploit
9
CVSSv2
CVE-2007-3841
Unspecified vulnerability in Pidgin (formerly Gaim) 2.0.2 for Linux allows remote authenticated users, who are listed in a users list, to execute certain commands via unspecified vectors, aka ZD-00000035. NOTE: this information is based upon a vague advisory by a vulnerability in...
Pidgin Pidgin 2.0.2
7.5
CVSSv2
CVE-2016-1000030
Pidgin version <2.11.0 contains a vulnerability in X.509 Certificates imports specifically due to improper check of return values from gnutls_x509_crt_init() and gnutls_x509_crt_import() that can result in code execution. This attack appear to be exploitable via custom X.509 c...
Suse Linux Enterprise Server 11
Pidgin Pidgin
7.5
CVSSv2
CVE-2017-2640
An out-of-bounds write flaw was found in the way Pidgin prior to 2.12.0 processed XML content. A malicious remote server could potentially use this flaw to crash Pidgin or execute arbitrary code in the context of the pidgin process.
Pidgin Pidgin
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Server Eus 7.5
Redhat Enterprise Linux Server Aus 7.4
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Server Eus 7.4
Redhat Enterprise Linux Workstation 7.0
Debian Debian Linux 8.0
7.5
CVSSv2
CVE-2014-3775
libgadu prior to 1.11.4 and 1.12.0 prior to 1.12.0-rc3, as used in Pidgin and other products, allows remote Gadu-Gadu file relay servers to cause a denial of service (memory overwrite) or possibly execute arbitrary code via a crafted message.
Libgadu Libgadu 1.12.0
Libgadu Libgadu
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »