Vulnerabilities > Pidgin
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-07-01 | CVE-2008-2955 | Improper Input Validation vulnerability in Pidgin 2.4.1 Pidgin 2.4.1 allows remote attackers to cause a denial of service (crash) via a long filename that contains certain characters, as demonstrated using an MSN message that triggers the crash in the msn_slplink_process_msg function. | 4.3 |
| 2007-10-29 | CVE-2007-4999 | Improper Input Validation vulnerability in Pidgin 2.1.0/2.2.0/2.2.1 libpurple in Pidgin 2.1.0 through 2.2.1, when using HTML logging, allows remote attackers to cause a denial of service (NULL dereference and application crash) via a message that contains invalid HTML data, a different vector than CVE-2007-4996. | 4.3 |
| 2007-10-01 | CVE-2007-4996 | Remote Denial Of Service vulnerability in Pidgin 2.2.0 libpurple in Pidgin before 2.2.1 does not properly handle MSN nudge messages from users who are not on the receiver's buddy list, which allows remote attackers to cause a denial of service (crash) via a nudge message that triggers an access of "an invalid memory location." network pidgin | 4.3 |
| 2007-07-17 | CVE-2007-3841 | Remote Command Execution vulnerability in Pidgin 2.0.2 Unspecified vulnerability in Pidgin (formerly Gaim) 2.0.2 for Linux allows remote authenticated users, who are listed in a users list, to execute certain commands via unspecified vectors, aka ZD-00000035. | 9.0 |