CVE

Id
33073  
CVE No.
CVE-2008-2956  
Status
Candidate  
Description
** DISPUTED ** Memory leak in Pidgin 2.0.0, and possibly other versions, allows remote attackers to cause a denial of service (memory consumption) via malformed XML documents. NOTE: this issue has been disputed by the upstream vendor, who states: "I was never able to identify a scenario under which a problem occurred and the original reporter wasn"t able to supply any sort of reproduction details."  
Phase
Assigned (20080701)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
359491 33073 CVE-2008-2956 BUGTRAQ:20080806 rPSA-2008-0246-1 gaim  View
359492 33073 CVE-2008-2956 URL:http://www.securityfocus.com/archive/1/archive/1/495165/100/0/threaded  View
359493 33073 CVE-2008-2956 MISC:http://crisp.cs.du.edu/?q=ca2007-1  View
359494 33073 CVE-2008-2956 MLIST:[oss-security] 20080627 CVE Request (pidgin)  View
359495 33073 CVE-2008-2956 URL:http://www.openwall.com/lists/oss-security/2008/06/27/3  View
359496 33073 CVE-2008-2956 CONFIRM:http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0246  View
359497 33073 CVE-2008-2956 CONFIRM:https://issues.rpath.com/browse/RPL-2647  View
359498 33073 CVE-2008-2956 BID:29985  View
359499 33073 CVE-2008-2956 URL:http://www.securityfocus.com/bid/29985  View
359500 33073 CVE-2008-2956 SECUNIA:31387  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
50640 JVNDB-2008-005950 phpMyAdmin におけるクロスサイトスクリプティングの脆弱性 phpMyAdmin は、register_globals が有効になっている際、libraries/ 配下のスクリプト関連に不備があるため、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2008-2960 33073 2.6 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-005950.html  View