Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pidgin pidgin vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-3088
The notify function in pidgin-knotify.c in the pidgin-knotify plugin 0.2.1 and previous versions for Pidgin allows remote malicious users to execute arbitrary commands via shell metacharacters in a message.
Jianping Yu Pidgin-knotify 0.2.0
Jianping Yu Pidgin-knotify 0.1.2
Jianping Yu Pidgin-knotify 0.1
Jianping Yu Pidgin-knotify
NA
CVE-2010-2528
The clientautoresp function in family_icbm.c in the oscar protocol plugin in libpurple in Pidgin prior to 2.7.2 allows remote authenticated users to cause a denial of service (NULL pointer dereference and application crash) via an X-Status message that lacks the expected end tag ...
Pidgin Pidgin 2.2.0
Pidgin Pidgin 2.2.1
Pidgin Pidgin 2.4.3
Pidgin Pidgin 2.5.0
Pidgin Pidgin 2.5.8
Pidgin Pidgin 2.5.9
Pidgin Pidgin 2.7.0
Pidgin Pidgin
Pidgin Pidgin 2.0.1
Pidgin Pidgin 2.0.2
Pidgin Pidgin 2.3.1
Pidgin Pidgin 2.4.0
Pidgin Pidgin 2.5.4
Pidgin Pidgin 2.5.5
Pidgin Pidgin 2.6.2
Pidgin Pidgin 2.6.4
Pidgin Pidgin 2.1.0
Pidgin Pidgin 2.1.1
Pidgin Pidgin 2.4.1
Pidgin Pidgin 2.4.2
Pidgin Pidgin 2.5.6
Pidgin Pidgin 2.5.7
NA
CVE-2010-1624
The msn_emoticon_msg function in slp.c in the MSN protocol plugin in libpurple in Pidgin prior to 2.7.0 allows remote authenticated users to cause a denial of service (NULL pointer dereference and application crash) via a custom emoticon in a malformed SLP message.
Pidgin Pidgin
Canonical Ubuntu Linux 10.10
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 10.04
NA
CVE-2010-0420
libpurple in Finch in Pidgin prior to 2.6.6, when an XMPP multi-user chat (MUC) room is used, does not properly parse nicknames containing <br> sequences, which allows remote malicious users to cause a denial of service (application crash) via a crafted nickname.
Pidgin Pidgin 2.0.1
Pidgin Pidgin 2.5.4
Pidgin Pidgin 2.5.5
Pidgin Pidgin 2.2.2
Pidgin Pidgin 2.5.8
Pidgin Pidgin 2.6.1
Pidgin Pidgin 2.0.0
Pidgin Pidgin 2.4.0
Pidgin Pidgin 2.5.2
Pidgin Pidgin 2.5.3
Pidgin Pidgin 2.2.0
Pidgin Pidgin 2.5.7
Pidgin Pidgin 2.0.2
Pidgin Pidgin 2.5.6
Pidgin Pidgin 2.4.3
Pidgin Pidgin 2.1.1
Pidgin Pidgin 2.3.1
Pidgin Pidgin 2.3.0
Pidgin Pidgin 2.6.4
Pidgin Pidgin 2.6.0
Pidgin Pidgin
Pidgin Pidgin 2.6.2
NA
CVE-2010-0423
gtkimhtml.c in Pidgin prior to 2.6.6 allows remote malicious users to cause a denial of service (CPU consumption and application hang) by sending many smileys in a (1) IM or (2) chat.
Pidgin Pidgin 2.6.2
Pidgin Pidgin 2.6.1
Pidgin Pidgin 2.5.3
Pidgin Pidgin
Pidgin Pidgin 2.6.4
Pidgin Pidgin 2.5.5
Pidgin Pidgin 2.5.4
Pidgin Pidgin 2.4.1
Pidgin Pidgin 2.4.0
Pidgin Pidgin 2.1.0
Pidgin Pidgin 2.0.2
Pidgin Pidgin 2.5.2
Pidgin Pidgin 2.3.1
Pidgin Pidgin 2.3.0
Pidgin Pidgin 2.0.1
Pidgin Pidgin 2.0.0
Pidgin Pidgin 2.6.0
Pidgin Pidgin 2.5.9
Pidgin Pidgin 2.5.1
Pidgin Pidgin 2.5.0
Pidgin Pidgin 2.2.2
Pidgin Pidgin 2.2.1
NA
CVE-2010-0277
slp.c in the MSN protocol plugin in libpurple in Pidgin prior to 2.6.6, including 2.6.4, and Adium 1.3.8 allows remote malicious users to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a malformed MSNSLP INVITE re...
Pidgin Pidgin 2.5.9
Pidgin Pidgin 2.5.8
Pidgin Pidgin 2.5.6
Pidgin Pidgin 2.5.7
Pidgin Pidgin
Pidgin Pidgin 2.4.3
Pidgin Pidgin 2.3.1
Pidgin Pidgin 2.0.2
Pidgin Pidgin 2.0.1
Pidgin Pidgin 2.5.0
Pidgin Pidgin 2.5.1
Pidgin Pidgin 2.6.0
Pidgin Pidgin 2.4.0
Pidgin Pidgin 2.2.1
Pidgin Pidgin 2.2.2
Pidgin Pidgin 2.5.2
Pidgin Pidgin 2.5.3
Pidgin Pidgin 2.6.2
Pidgin Pidgin 2.6.1
Pidgin Pidgin 2.3.0
Pidgin Pidgin 2.2.0
Pidgin Pidgin 2.0.0
NA
CVE-2009-3615
The OSCAR protocol plugin in libpurple in Pidgin prior to 2.6.3 and Adium prior to 1.3.7 allows remote malicious users to cause a denial of service (application crash) via crafted contact-list data for (1) ICQ and possibly (2) AIM, as demonstrated by the SIM IM client.
Adium Adium 1.3.3
Adium Adium 1.3.4
Adium Adium 1.0.3
Adium Adium 1.3
Adium Adium 1.1.3
Pidgin Pidgin 2.6.1
Pidgin Pidgin 2.5.4
Pidgin Pidgin 2.5.3
Pidgin Pidgin 2.3.1
Pidgin Pidgin 2.3.0
Pidgin Pidgin 2.0.1
Pidgin Pidgin 2.0.0
Adium Adium 1.3.5
Adium Adium 1.0
Adium Adium 1.0.4
Adium Adium 1.1
Pidgin Pidgin 2.6.0
Pidgin Pidgin 2.5.9
Pidgin Pidgin 2.5.2
Pidgin Pidgin 2.5.1
Pidgin Pidgin 2.2.2
Pidgin Pidgin 2.2.1
NA
CVE-2009-3084
The msn_slp_process_msg function in libpurple/protocols/msn/slpcall.c in the MSN protocol plugin in libpurple 2.6.0 and 2.6.1, as used in Pidgin prior to 2.6.2, allows remote malicious users to cause a denial of service (application crash) via a handwritten (aka Ink) message, rel...
Pidgin Pidgin 2.5.9
Pidgin Pidgin 2.4.1
Pidgin Pidgin 2.4.0
Pidgin Pidgin 2.4.2
Pidgin Pidgin 2.4.3
Pidgin Pidgin 2.5.1
Pidgin Pidgin 2.5.5
Pidgin Pidgin 2.1.0
Pidgin Pidgin 2.5.7
Pidgin Pidgin 2.0.1
Pidgin Pidgin 2.5.4
Pidgin Pidgin 2.3.0
Pidgin Pidgin 2.2.2
Pidgin Pidgin 2.5.2
Pidgin Pidgin 2.0.2
Pidgin Pidgin 2.6.0
Pidgin Pidgin 2.0.0
Pidgin Pidgin 2.5.0
Pidgin Pidgin 2.5.8
Pidgin Pidgin 2.5.3
Pidgin Pidgin 2.2.0
Pidgin Pidgin 2.5.6
NA
CVE-2009-3083
The msn_slp_sip_recv function in libpurple/protocols/msn/slp.c in the MSN protocol plugin in libpurple in Pidgin prior to 2.6.2 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via an SLP invite message that lacks certain...
Pidgin Libpurple
Pidgin Pidgin 2.5.9
Pidgin Pidgin 2.4.3
Pidgin Pidgin 2.4.1
Pidgin Pidgin 2.4.2
Pidgin Pidgin 2.0.0
Pidgin Pidgin 2.4.0
Pidgin Pidgin 2.5.2
Pidgin Pidgin 2.5.0
Pidgin Pidgin 2.5.1
Pidgin Pidgin 2.5.6
Pidgin Pidgin 2.1.0
Pidgin Pidgin 2.5.5
Pidgin Pidgin 2.5.3
Pidgin Pidgin 2.5.7
Pidgin Pidgin 2.2.1
Pidgin Pidgin 2.5.4
Pidgin Pidgin 2.2.2
Pidgin Pidgin 2.5.8
Pidgin Pidgin 2.0.2
Pidgin Pidgin 2.2.0
Pidgin Pidgin 2.1.1
NA
CVE-2009-3085
The XMPP protocol plugin in libpurple in Pidgin prior to 2.6.2 does not properly handle an error IQ stanza during an attempted fetch of a custom smiley, which allows remote malicious users to cause a denial of service (application crash) via XHTML-IM content with cid: images.
Pidgin Libpurple
Pidgin Pidgin 2.5.5
Pidgin Pidgin 2.0.0
Pidgin Pidgin 2.5.0
Pidgin Pidgin 2.5.2
Pidgin Pidgin 2.5.8
Pidgin Pidgin 2.5.3
Pidgin Pidgin 2.2.0
Pidgin Pidgin 2.5.6
Pidgin Pidgin 2.5.9
Pidgin Pidgin 2.4.3
Pidgin Pidgin 2.1.1
Pidgin Pidgin 2.4.2
Pidgin Pidgin 2.3.1
Pidgin Pidgin 2.4.0
Pidgin Pidgin 2.4.1
Pidgin Pidgin 2.5.4
Pidgin Pidgin 2.2.1
Pidgin Pidgin
Pidgin Pidgin 2.0.1
Pidgin Pidgin 2.3.0
Pidgin Pidgin 2.2.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671
unauthorized
CVE-2024-4776
CVE-2024-3407
CVE-2024-26026
CVE-2024-32888
wireless
CVE-2024-4656
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »