Vulnerabilities > Pidgin > Pidgin > 2.10.4
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2013-02-16 | CVE-2013-0272 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Pidgin Buffer overflow in http.c in the MXit protocol plugin in libpurple in Pidgin before 2.10.7 allows remote servers to execute arbitrary code via a long HTTP header. | 6.8 |
2013-02-16 | CVE-2013-0271 | Arbitrary File Overwrite vulnerability in Pidgin 'Libpurple' The MXit protocol plugin in libpurple in Pidgin before 2.10.7 might allow remote attackers to create or overwrite files via a crafted (1) mxit or (2) mxit/imagestrips pathname. | 5.0 |
2012-08-08 | CVE-2011-4922 | Information Exposure vulnerability in Pidgin cipher.c in the Cipher API in libpurple in Pidgin before 2.7.10 retains encryption-key data in process memory, which might allow local users to obtain sensitive information by reading a core file or other representation of memory contents. | 2.1 |
2012-07-07 | CVE-2012-3374 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Pidgin Buffer overflow in markup.c in the MXit protocol plugin in libpurple in Pidgin before 2.10.5 allows remote attackers to execute arbitrary code via a crafted inline image in a message. | 7.5 |