Showing 1 - 3 of 3

CVE-2016-2376

Status Candidate

Overview

A buffer overflow vulnerability exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent from the server could potentially result in arbitrary code execution. A malicious server or an attacker who intercepts the network traffic can send an invalid size for a packet which will trigger a buffer overflow.

Related Files

Gentoo Linux Security Advisory 201701-38: Posted Jan 17, 2017; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 201701-38 - Multiple vulnerabilities have been found in Pidgin, the worst of which could lead to execution of arbitrary code. Versions less than 2.11.0 are affected.; tags | advisory, arbitrary, vulnerability; systems | linux, gentoo; advisories | CVE-2016-1000030, CVE-2016-2365, CVE-2016-2366, CVE-2016-2367, CVE-2016-2368, CVE-2016-2369, CVE-2016-2370, CVE-2016-2371, CVE-2016-2372, CVE-2016-2373, CVE-2016-2374, CVE-2016-2375, CVE-2016-2376, CVE-2016-2377, CVE-2016-2378, CVE-2016-2379, CVE-2016-2380, CVE-2016-4323; MD5 | ca4a7e71977f04c21470018bdda8e442; Download | Favorite | View

Debian Security Advisory 3620-1: Posted Jul 18, 2016; Authored by Debian | Site debian.org; Debian Linux Security Advisory 3620-1 - Yves Younan of Cisco Talos discovered several vulnerabilities in the MXit protocol support in pidgin, a multi-protocol instant messaging client. A remote attacker can take advantage of these flaws to cause a denial of service (application crash), overwrite files, information disclosure, or potentially to execute arbitrary code.; tags | advisory, remote, denial of service, arbitrary, vulnerability, protocol, info disclosure; systems | cisco, linux, debian; advisories | CVE-2016-2365, CVE-2016-2366, CVE-2016-2367, CVE-2016-2368, CVE-2016-2369, CVE-2016-2370, CVE-2016-2371, CVE-2016-2372, CVE-2016-2373, CVE-2016-2374, CVE-2016-2375, CVE-2016-2376, CVE-2016-2377, CVE-2016-2378, CVE-2016-2380, CVE-2016-4323; MD5 | be0d97de8b7c894efd2023c34ac1f463; Download | Favorite | View

Ubuntu Security Notice USN-3031-1: Posted Jul 12, 2016; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 3031-1 - Yves Younan discovered that Pidgin contained multiple issues in the MXit protocol support. A remote attacker could use this issue to cause Pidgin to crash, resulting in a denial of service, or possibly execute arbitrary code.; tags | advisory, remote, denial of service, arbitrary, protocol; systems | linux, ubuntu; advisories | CVE-2016-2365, CVE-2016-2366, CVE-2016-2367, CVE-2016-2368, CVE-2016-2369, CVE-2016-2370, CVE-2016-2371, CVE-2016-2372, CVE-2016-2373, CVE-2016-2374, CVE-2016-2375, CVE-2016-2376, CVE-2016-2377, CVE-2016-2378, CVE-2016-2380, CVE-2016-4323; MD5 | bee9450b7cbf321fb800b570e7930ee0; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 97 files
Ubuntu 44 files
malvuln 36 files
Apple 14 files
Gentoo 11 files
Taurus Omar 11 files
nu11secur1ty 8 files
Richard Jones 6 files
Bobby Cooke 6 files
Erick Galindo 6 files

File Archives

Systems

AIX (421)
Apple (1,796)
BSD (368)
CentOS (53)
Cisco (1,904)
Debian (5,945)
Fedora (1,688)
FreeBSD (1,241)
Gentoo (4,055)
HPUX (873)
iOS (292)
iPhone (108)
IRIX (220)
Juniper (67)
Linux (39,842)
Mac OS X (676)
Mandriva (3,105)
NetBSD (255)
OpenBSD (474)
RedHat (9,948)
Slackware (941)
Solaris (1,598)
SUSE (1,444)
Ubuntu (7,227)
UNIX (8,888)
UnixWare (180)
Windows (5,933)
Other

CVE-2016-2376

Overview

Related Files

File Archive:

May 2021

Top Authors In Last 30 Days

File Tags

File Archives

Systems