Lucene search
Ubuntu.comUB:CVE-2013-6486HistoryFeb 06, 2014 - 12:00 a.m.
CVE-2013-6486
2014-02-0600:00:00
ubuntu.com
ubuntu.com
13
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
0.017
Percentile
88.2%
gtkutils.c in Pidgin before 2.10.8 on Windows allows user-assisted remote
attackers to execute arbitrary programs via a message containing a file:
URL that is improperly handled during construction of an explorer.exe
command. NOTE: this vulnerability exists because of an incomplete fix for
CVE-2011-3185.
Notes
| Author | Note |
|---|---|
| mdeslaur | fix for incorrect CVE-2011-3185 fix windows specific. |
Related
nvd
nvd
CVE-2013-6486
2014-02-06 16:10:58
CVE-2011-3185
2011-08-29 17:55:01
prion
prion
Command injection
2014-02-06 16:10:00
Code injection
2011-08-29 17:55:00
debiancve
debiancve
CVE-2013-6486
2014-02-06 16:10:58
CVE-2011-3185
2011-08-29 17:55:01
cvelist
cvelist
CVE-2013-6486
2014-02-06 15:00:00
CVE-2011-3185
2011-08-29 17:00:00
cve
cve
CVE-2013-6486
2014-02-06 16:10:58
CVE-2011-3185
2011-08-29 17:55:01
talos
talos
Pidgin for Windows URL Handling Remote Code Execution Vulnerability
2014-01-26 00:00:00
ubuntucve
ubuntucve
CVE-2011-3185
2011-08-29 00:00:00
openvas
openvas
Pidgin Multiple Vulnerabilities (Feb 2014) - Windows
2014-02-14 00:00:00
securityvulns
securityvulns
Pidgin code execution
2011-08-30 00:00:00
nessus
nessus
Pidgin < 2.10.0 Multiple Vulnerabilities
2011-08-22 00:00:00
kaspersky
kaspersky
KLA10433 Multiple vulnerabilities in Pidgin
2014-06-02 00:00:00
slackware
slackware
pidgin
2014-02-03 13:58:20
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
0.017
Percentile
88.2%
Related for UB:CVE-2013-6486