Adium Adium 1.3.8

CPE Details

Adium Adium 1.3.8
adium
adium
1.3.8
2023-12-29
09h15 +00:00
2023-12-29
09h15 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:adium:adium:1.3.8:*:*:*:*:*:*:*

Informations

Vendor

adium

Product

adium

Version

1.3.8

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2010-0013 2010-01-09 17h00 +00:00 Directory traversal vulnerability in slp.c in the MSN protocol plugin in libpurple in Pidgin 2.6.4 and Adium 1.3.8 allows remote attackers to read arbitrary files via a .. (dot dot) in an application/x-msnmsgrp2p MSN emoticon (aka custom smiley) request, a related issue to CVE-2004-0122. NOTE: it could be argued that this is resultant from a vulnerability in which an emoticon download request is processed even without a preceding text/x-mms-emoticon message that announced availability of the emoticon.
7.5
High
CVE-2010-0277 2010-01-09 17h00 +00:00 slp.c in the MSN protocol plugin in libpurple in Pidgin before 2.6.6, including 2.6.4, and Adium 1.3.8 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a malformed MSNSLP INVITE request in an SLP message, a different issue than CVE-2010-0013.
5