CVE-2013-6477

Опубликовано: 06 фев. 2014

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Multiple integer signedness errors in libpurple in Pidgin before 2.10.8 allow remote attackers to cause a denial of service (application crash) via a crafted timestamp value in an XMPP message.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:pidgin:pidgin:*:*:*:*:*:*:*:*

Версия до 2.10.7 (включая)

cpe:2.3:a:pidgin:pidgin:2.0.0:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.0.1:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.0.2:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.1.0:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.1.1:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.2.0:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.2.1:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.2.2:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.3.0:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.3.1:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.4.0:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.4.1:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.4.2:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.4.3:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.5.0:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.5.1:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.5.2:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.5.3:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.5.4:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.5.5:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.5.6:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.5.7:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.5.8:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.5.9:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.6.0:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.6.1:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.6.2:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.6.3:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.6.4:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.6.5:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.6.6:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.7.0:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.7.1:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.7.2:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.7.3:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.7.4:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.7.5:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.7.6:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.7.7:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.7.8:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.7.9:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.7.10:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.7.11:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.8.0:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.9.0:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.10.0:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.10.1:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.10.2:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.10.3:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.10.4:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.10.5:*:*:*:*:*:*:*

cpe:2.3:a:pidgin:pidgin:2.10.6:*:*:*:*:*:*:*

EPSS

Процентиль: 77%

0.01102

Низкий

5 Medium

CVSS2

Дефекты

CWE-189

Связанные уязвимости

CVE-2013-6477

ubuntu

больше 11 лет назад

Multiple integer signedness errors in libpurple in Pidgin before 2.10.8 allow remote attackers to cause a denial of service (application crash) via a crafted timestamp value in an XMPP message.

CVE-2013-6477

redhat

больше 11 лет назад

Multiple integer signedness errors in libpurple in Pidgin before 2.10.8 allow remote attackers to cause a denial of service (application crash) via a crafted timestamp value in an XMPP message.

CVE-2013-6477

debian

больше 11 лет назад

Multiple integer signedness errors in libpurple in Pidgin before 2.10. ...

GHSA-p5wr-9p3g-gxc3

github

около 3 лет назад

Multiple integer signedness errors in libpurple in Pidgin before 2.10.8 allow remote attackers to cause a denial of service (application crash) via a crafted timestamp value in an XMPP message.

ELSA-2014-0139

oracle-oval

больше 11 лет назад

ELSA-2014-0139: pidgin security update (MODERATE)

EPSS

Процентиль: 77%

0.01102

Низкий

5 Medium

CVSS2

Дефекты

CWE-189