Vulnerabilities > Pidgin > Pidgin > 2.10.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2011-12-17 | CVE-2011-4603 | Improper Input Validation vulnerability in Pidgin The silc_channel_message function in ops.c in the SILC protocol plugin in libpurple in Pidgin before 2.10.1 does not perform the expected UTF-8 validation on message data, which allows remote attackers to cause a denial of service (application crash) via a crafted message, a different vulnerability than CVE-2011-3594. | 5.0 |
2011-12-17 | CVE-2011-4602 | Improper Input Validation vulnerability in Pidgin The XMPP protocol plugin in libpurple in Pidgin before 2.10.1 does not properly handle missing fields in (1) voice-chat and (2) video-chat stanzas, which allows remote attackers to cause a denial of service (application crash) via a crafted message. | 5.0 |