5
CVSSv2

CVE-2013-6482

Published: 06/02/2014 Updated: 16/03/2014
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Summary

Pidgin prior to 2.10.8 allows remote MSN servers to cause a denial of service (NULL pointer dereference and crash) via a crafted (1) SOAP response, (2) OIM XML response, or (3) Content-Length header.

Vulnerable Product Search on Vulmon Subscribe to Product

pidgin pidgin 2.7.8

pidgin pidgin 2.7.7

pidgin pidgin 2.7.10

pidgin pidgin 2.7.1

pidgin pidgin 2.6.0

pidgin pidgin 2.5.9

pidgin pidgin 2.5.2

pidgin pidgin 2.5.1

pidgin pidgin 2.3.0

pidgin pidgin 2.2.2

pidgin pidgin 2.10.1

pidgin pidgin 2.10.0

pidgin pidgin 2.7.6

pidgin pidgin 2.7.5

pidgin pidgin 2.7.0

pidgin pidgin 2.6.6

pidgin pidgin 2.6.5

pidgin pidgin 2.5.8

pidgin pidgin 2.5.7

pidgin pidgin 2.5.0

pidgin pidgin 2.4.3

pidgin pidgin 2.2.1

pidgin pidgin 2.2.0

pidgin pidgin 2.10.6

pidgin pidgin 2.1.1

pidgin pidgin 2.1.0

pidgin pidgin 2.8.0

pidgin pidgin 2.7.9

pidgin pidgin 2.7.2

pidgin pidgin 2.7.11

pidgin pidgin 2.6.2

pidgin pidgin 2.6.1

pidgin pidgin 2.5.4

pidgin pidgin 2.5.3

pidgin pidgin 2.4.0

pidgin pidgin 2.3.1

pidgin pidgin 2.10.3

pidgin pidgin 2.10.2

pidgin pidgin 2.0.0

pidgin pidgin

pidgin pidgin 2.9.0

pidgin pidgin 2.7.4

pidgin pidgin 2.7.3

pidgin pidgin 2.6.4

pidgin pidgin 2.6.3

pidgin pidgin 2.5.6

pidgin pidgin 2.5.5

pidgin pidgin 2.4.2

pidgin pidgin 2.4.1

pidgin pidgin 2.10.5

pidgin pidgin 2.10.4

pidgin pidgin 2.0.2

pidgin pidgin 2.0.1

Vendor Advisories

Several security issues were fixed in Pidgin ...
Multiple vulnerabilities have been discovered in Pidgin, a multi-protocol instant messaging client: CVE-2013-6477 Jaime Breva Ribes discovered that a remote XMPP user can trigger a crash by sending a message with a timestamp in the distant future CVE-2013-6478 Pidgin could be crashed through overly wide tooltip windows CVE-2013-6479 ...
Pidgin before 2108 allows remote MSN servers to cause a denial of service (NULL pointer dereference and crash) via a crafted (1) SOAP response, (2) OIM XML response, or (3) Content-Length header ...