what you don't know can hurt you
Showing 1 - 1 of 1 RSS Feed

Files

Mandriva Linux Security Advisory 2010-085
Posted Apr 28, 2010
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2010-085 - The OSCAR protocol plugin in libpurple in Pidgin before 2.6.3 and Adium before 1.3.7 allows remote attackers to cause a denial of service (application crash) via crafted contact-list data for ICQ and possibly AIM, as demonstrated by the SIM IM client. Directory traversal vulnerability in slp.c in the MSN protocol plugin in libpurple in Pidgin 2.6.4 and Adium 1.3.8 allows remote attackers to read arbitrary files via a .. (dot dot) in an application/x-msnmsgrp2p MSN emoticon (aka custom smiley) request, a related issue to CVE-2004-0122. Directory traversal vulnerability in slp.c in the MSN protocol plugin in libpurple in Pidgin 2.6.4 and Adium 1.3.8 allows remote attackers to read arbitrary files via a .. (dot dot) in an application/x-msnmsgrp2p MSN emoticon (aka custom smiley) request, a related issue to CVE-2004-0122. Other issues have also been identified.

tags | advisory, remote, denial of service, arbitrary, protocol
systems | linux, mandriva
advisories | CVE-2009-3615, CVE-2010-0013, CVE-2010-0013, CVE-2010-0277, CVE-2010-0420, CVE-2010-0423
MD5 | 49222a235d53bf710183de3ed0ee127d
Page 1 of 1
Back1Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
U.S. Intelligence Says Huawei Funded By Chinese State Security
Posted Apr 20, 2019

tags | headline, government, usa, china, cyberwar, spyware, backdoor
Marcus Hutchins Pleads Guilty To Two Counts Of Banking Malware Creation
Posted Apr 20, 2019

tags | headline, hacker, government, malware, bank, usa, britain
Ransomware Ravages Municipalities Nationwide This Week
Posted Apr 20, 2019

tags | headline, government, malware, cybercrime, fraud
Facebook Fights To Shield Zuckerberg In US Privacy Probe
Posted Apr 20, 2019

tags | headline, government, privacy, usa, data loss, fraud, facebook, social
Weather Channel Knocked Off-Air In Dangerous Precedent
Posted Apr 19, 2019

tags | headline, denial of service
Facebook Security Lapse Affects Millions More Instragram Users Than First Stated
Posted Apr 19, 2019

tags | headline, privacy, data loss, password, facebook, social
Unexpected Security Feature In Microsoft Edge Subverts IE Security
Posted Apr 19, 2019

tags | headline, microsoft, flaw
Mueller Report Dives Into Russia And Trump
Posted Apr 19, 2019

tags | headline, government, usa, russia, fraud, fbi
State-Sponsored DNS Hijacking Infiltrates 40 Firms Globally
Posted Apr 18, 2019

tags | headline, hacker, government, dns, cyberwar
EA Origin Client Bug Allows Threat Actors To Run Remote Code
Posted Apr 18, 2019

tags | headline, flaw
View More News →
packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close