CVE-2008-2927 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	6.8 UNKNOWN	NETWORK	MEDIUM		AV:N/AC:M/Au:N/C:P/I:P/A:P
redhat	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 90%

Vendor	Product	Version
pidgin	pidgin	𝑥 ≤ 2.4.2
pidgin	pidgin	2.0.0
pidgin	pidgin	2.0.1
pidgin	pidgin	2.0.2
pidgin	pidgin	2.1.0
pidgin	pidgin	2.1.1
pidgin	pidgin	2.2.0
pidgin	pidgin	2.2.1
pidgin	pidgin	2.2.2
pidgin	pidgin	2.3.0
pidgin	pidgin	2.3.1
pidgin	pidgin	2.4.0
pidgin	pidgin	2.4.1
adium	adium	𝑥 ≤ 1.2.7
adium	adium	1.0
adium	adium	1.0.1
adium	adium	1.0.2
adium	adium	1.0.3
adium	adium	1.0.4
adium	adium	1.0.5
adium	adium	1.1
adium	adium	1.1.1
adium	adium	1.1.2
adium	adium	1.1.3
adium	adium	1.1.4

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

pidgin

bullseye	2.14.1-1 fixed
lenny	not-affected
bookworm	2.14.12-1 fixed
sid	2.14.13-2 fixed
trixie	2.14.13-2 fixed

Ubuntu Releases

Ubuntu Product

Codename

gaim

intrepid	dne
hardy	dne
gutsy	dne
feisty	ignored
dapper	Fixed 1:1.5.0+1.5.1cvs20051015-1ubuntu10.1 released

pidgin

intrepid	not-affected
hardy	Fixed 1:2.4.1-1ubuntu2.2 released
gutsy	Fixed 1:2.2.1-1ubuntu4.3 released
feisty	dne
dapper	dne

Common Weakness Enumeration

CWE-189 -

References

http://developer.pidgin.im/viewmtn/revision/diff/6eb1949a96fa80a4c744fc749c2562abc4cc9ed6/with/c3831c9181f4f61b747321240086ee79e4a08fd8/libpurple/protocols/msn/slplink.c

http://developer.pidgin.im/viewmtn/revision/diff/6eb1949a96fa80a4c744fc749c2562abc4cc9ed6/with/c3831c9181f4f61b747321240086ee79e4a08fd8/libpurple/protocols/msnp9/slplink.c

http://secunia.com/advisories/30971

http://secunia.com/advisories/31016

http://secunia.com/advisories/31105

http://secunia.com/advisories/31387

http://secunia.com/advisories/31642

http://secunia.com/advisories/32859

http://secunia.com/advisories/32861

http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0246

http://www.debian.org/security/2008/dsa-1610

http://www.mandriva.com/security/advisories?name=MDVSA-2008:143

http://www.mandriva.com/security/advisories?name=MDVSA-2009:127

http://www.openwall.com/lists/oss-security/2008/07/03/6

http://www.openwall.com/lists/oss-security/2008/07/04/1

http://www.pidgin.im/news/security/?id=25

http://www.redhat.com/support/errata/RHSA-2008-0584.html

http://www.securityfocus.com/archive/1/493682

http://www.securityfocus.com/archive/1/495165/100/0/threaded

http://www.securityfocus.com/archive/1/495818/100/0/threaded

http://www.securityfocus.com/bid/29956

http://www.securitytracker.com/id?1020451

http://www.ubuntu.com/usn/USN-675-1

http://www.ubuntu.com/usn/USN-675-2

http://www.vupen.com/english/advisories/2008/2032/references

http://www.zerodayinitiative.com/advisories/ZDI-08-054

https://bugzilla.redhat.com/show_bug.cgi?id=453764

https://exchange.xforce.ibmcloud.com/vulnerabilities/44774

https://issues.rpath.com/browse/RPL-2647

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11695

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17972

http://developer.pidgin.im/viewmtn/revision/diff/6eb1949a96fa80a4c744fc749c2562abc4cc9ed6/with/c3831c9181f4f61b747321240086ee79e4a08fd8/libpurple/protocols/msn/slplink.c

http://developer.pidgin.im/viewmtn/revision/diff/6eb1949a96fa80a4c744fc749c2562abc4cc9ed6/with/c3831c9181f4f61b747321240086ee79e4a08fd8/libpurple/protocols/msnp9/slplink.c

http://secunia.com/advisories/30971

http://secunia.com/advisories/31016

http://secunia.com/advisories/31105

http://secunia.com/advisories/31387

http://secunia.com/advisories/31642

http://secunia.com/advisories/32859

http://secunia.com/advisories/32861

http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0246

http://www.debian.org/security/2008/dsa-1610

http://www.mandriva.com/security/advisories?name=MDVSA-2008:143

http://www.mandriva.com/security/advisories?name=MDVSA-2009:127

http://www.openwall.com/lists/oss-security/2008/07/03/6

http://www.openwall.com/lists/oss-security/2008/07/04/1

http://www.pidgin.im/news/security/?id=25

http://www.redhat.com/support/errata/RHSA-2008-0584.html

http://www.securityfocus.com/archive/1/493682

http://www.securityfocus.com/archive/1/495165/100/0/threaded

http://www.securityfocus.com/archive/1/495818/100/0/threaded

http://www.securityfocus.com/bid/29956

http://www.securitytracker.com/id?1020451

http://www.ubuntu.com/usn/USN-675-1

http://www.ubuntu.com/usn/USN-675-2

http://www.vupen.com/english/advisories/2008/2032/references

http://www.zerodayinitiative.com/advisories/ZDI-08-054

https://bugzilla.redhat.com/show_bug.cgi?id=453764

https://exchange.xforce.ibmcloud.com/vulnerabilities/44774

https://issues.rpath.com/browse/RPL-2647

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11695

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17972