CVE-2010-0013
- EPSS 12.5%
- Veröffentlicht 09.01.2010 18:30:01
- Zuletzt bearbeitet 16.06.2026 23:15:14
Directory traversal vulnerability in slp.c in the MSN protocol plugin in libpurple in Pidgin 2.6.4 and Adium 1.3.8 allows remote attackers to read arbitrary files via a .. (dot dot) in an application/x-msnmsgrp2p MSN emoticon (aka custom smiley) requ...
- EPSS 2.31%
- Veröffentlicht 09.01.2010 18:30:01
- Zuletzt bearbeitet 16.06.2026 23:15:50
slp.c in the MSN protocol plugin in libpurple in Pidgin before 2.6.6, including 2.6.4, and Adium 1.3.8 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a malf...
- EPSS 2.66%
- Veröffentlicht 20.10.2009 17:30:00
- Zuletzt bearbeitet 16.06.2026 23:12:01
The OSCAR protocol plugin in libpurple in Pidgin before 2.6.3 and Adium before 1.3.7 allows remote attackers to cause a denial of service (application crash) via crafted contact-list data for (1) ICQ and possibly (2) AIM, as demonstrated by the SIM I...
- EPSS 1.22%
- Veröffentlicht 09.09.2009 17:30:01
- Zuletzt bearbeitet 16.06.2026 23:03:47
Unspecified vulnerability in Adium before 1.2 has unknown impact and attack vectors related to javascript: URLs, possibly cross-site scripting (XSS).
- EPSS 20.3%
- Veröffentlicht 21.08.2009 11:02:41
- Zuletzt bearbeitet 16.06.2026 23:10:02
The msn_slplink_process_msg function in libpurple/protocols/msn/slplink.c in libpurple, as used in Pidgin (formerly Gaim) before 2.5.9 and Adium 1.3.5 and earlier, allows remote attackers to execute arbitrary code or cause a denial of service (memory...
CVE-2008-2927
- EPSS 4.33%
- Veröffentlicht 07.07.2008 23:41:00
- Zuletzt bearbeitet 16.06.2026 22:54:44
Multiple integer overflows in the msn_slplink_process_msg functions in the MSN protocol handler in (1) libpurple/protocols/msn/slplink.c and (2) libpurple/protocols/msnp9/slplink.c in Pidgin before 2.4.3 and Adium before 1.3 allow remote attackers to...