Description
Multiple serious vulnerabilities have been found in Pidgin. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary programs and other unknown impact. Below is a complete list of vulnerabilities
- Improper traffic restrictions can be exploited remotely via a specially designed message;
- An unknown vulnerability can be exploited remotely via specially designed SOAP or OIM XML responses, Content-Length header, Yahoo! P2P message or specially designed files in messages;
- An integer overflow can be exploited remotely via a specially designed Content-Length header, emoticon or timestamp;
- Improper protocol implementation can be exploited remotely via a specially designed STUN server;
- A buffer overflow can be exploited remotely via a specially designed chunk-size field;
- Improper library interaction can be exploited remotely via a specially designed URL;
Original advisories
Related products
CVE list
- CVE-2013-6489 critical
- CVE-2013-6481 critical
- CVE-2013-6485 critical
- CVE-2013-6477 critical
- CVE-2014-0020 critical
- CVE-2013-6487 critical
- CVE-2013-6486 critical
- CVE-2013-6484 critical
- CVE-2013-6490 critical
- CVE-2013-6478 warning
- CVE-2013-6479 critical
- CVE-2013-6482 critical
- CVE-2013-6483 high
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!