CVE-2010-3711: CVE-2010-3711

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2010-3711

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

libpurple in Pidgin before 2.7.4 does not properly validate the return value of the purple_base64_decode function, which allows remote authenticated users to cause a denial of service (NULL pointer dereference and application crash) via a crafted message, related to the plugins for MSN, MySpaceIM, XMPP, and Yahoo! and the NTLM authentication support.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Pidgin libpurple输入验证漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Pidgin 是支持多种协议的即时通讯客户端。 Pidgin 2.7.4之前版本中的libpurple不能正确校验purple_base64_decode函数的返回值。远程认证用户可以借助特制消息导致拒绝服务(空指针解引用以及应用程序崩溃)。该漏洞与MSN，MySpaceIM，XMPP，Yahoo!以及NTLM认证支持的插件有关。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2010-3711

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2010-3711

Please Login to view more intelligence information

http://developer.pidgin.im/viewmtn/revision/info/b01c6a1f7fe4d86b83f5f10917b3cb713989cfccx_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=641921x_refsource_CONFIRM
http://pidgin.im/news/security/?id=48x_refsource_CONFIRM
http://www.osvdb.org/68773vdb-entryx_refsource_OSVDB
http://secunia.com/advisories/42294third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/44283vdb-entryx_refsource_BID
http://secunia.com/advisories/41893third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/42075third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/41899third-party-advisoryx_refsource_SECUNIA
http://securitytracker.com/id?1024623vdb-entryx_refsource_SECTRACK
http://www.ubuntu.com/usn/USN-1014-1vendor-advisoryx_refsource_UBUNTU
http://www.vupen.com/english/advisories/2010/2870vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2010/2851vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2010/2755vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2010/2754vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2010/2753vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2010/2847vdb-entryx_refsource_VUPEN
http://www.mandriva.com/security/advisories?name=MDVSA-2010:208vendor-advisoryx_refsource_MANDRIVA
http://www.redhat.com/support/errata/RHSA-2010-0788.htmlvendor-advisoryx_refsource_REDHAT
http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.462352vendor-advisoryx_refsource_SLACKWARE
http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050695.htmlvendor-advisoryx_refsource_FEDORA
http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050227.htmlvendor-advisoryx_refsource_FEDORA
http://lists.fedoraproject.org/pipermail/package-announce/2010-October/050133.htmlvendor-advisoryx_refsource_FEDORA
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18506vdb-entrysignaturex_refsource_OVAL
https://exchange.xforce.ibmcloud.com/vulnerabilities/62708vdb-entryx_refsource_XF
https://nvd.nist.gov/vuln/detail/CVE-2010-3711

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2010-3711

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2010-3711

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2010-3711

III. Intelligence Information for CVE-2010-3711

IV. Related Vulnerabilities

V. Comments for CVE-2010-3711

Leave a comment