CVE-2014-3698

The jabber_idn_validate function in jutil.c in the Jabber protocol plugin in libpurple in Pidgin before 2.10.10 allows remote attackers to obtain sensitive information from process memory via a crafted XMPP message.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:pidgin:pidgin:*:*:*:*:*:*:*:*
cpe:2.3:a:pidgin:pidgin:2.10.8:*:*:*:*:*:*:*
cpe:2.3:a:pidgin:pidgin:2.10.7:*:*:*:*:*:*:*
cpe:2.3:a:pidgin:pidgin:2.10.0:*:*:*:*:*:*:*
cpe:2.3:a:pidgin:pidgin:2.10.2:*:*:*:*:*:*:*
cpe:2.3:a:pidgin:pidgin:2.10.1:*:*:*:*:*:*:*
cpe:2.3:a:pidgin:pidgin:2.10.6:*:*:*:*:*:*:*
cpe:2.3:a:pidgin:pidgin:2.10.5:*:*:*:*:*:*:*
cpe:2.3:a:pidgin:pidgin:2.10.4:*:*:*:*:*:*:*
cpe:2.3:a:pidgin:pidgin:2.10.3:*:*:*:*:*:*:*

Information

Published : 2014-10-29 03:55

Updated : 2018-01-04 18:29


NVD link : CVE-2014-3698

Mitre link : CVE-2014-3698


JSON object : View

CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

Advertisement

dedicated server usa

Products Affected

pidgin

  • pidgin