CVE-2013-1769
Ubuntu Security Notice USN-1873-1
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A certain hashing algorithm in Telepathy Gabble 0.16.x before 0.16.5 and 0.17.x before 0.17.3 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted message.
Un algoritmo de hash concreto en Telepathy Gabble 0.16.x anterior a la versión 0.16.5 y 0.17.x anterior a 0.17.3 permite a atacantes remotos provocar una denegación de servicio (dereferencia a puntero nulo y caída) a través de un mensaje manipulado.
Maksim Otstavnov discovered that telepathy-gabble incorrectly handled TLS when connecting to legacy jabber servers. If a remote attacker were able to perform a man-in-the-middle attack, this flaw could be exploited to view sensitive information. It was discovered that telepathy-gabble incorrectly handled certain messages. A remote attacker could use this flaw to cause applications using telepathy-gabble to crash, resulting in a denial of service. This issue only affected Ubuntu 12.04 LTS and Ubuntu 12.10. Various other issues were also addressed.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2013-02-19 CVE Reserved
- 2013-06-12 CVE Published
- 2024-08-06 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-310: Cryptographic Issues
CAPEC
References (5)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/53779 | 2014-01-22 | |
| http://www.ubuntu.com/usn/USN-1873-1 | 2014-01-22 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Simon Mcvittie Search vendor "Simon Mcvittie" | Telepathy Gabble Search vendor "Simon Mcvittie" for product "Telepathy Gabble" | 0.16.0 Search vendor "Simon Mcvittie" for product "Telepathy Gabble" and version "0.16.0" | - |
Affected
| ||||||
| Simon Mcvittie Search vendor "Simon Mcvittie" | Telepathy Gabble Search vendor "Simon Mcvittie" for product "Telepathy Gabble" | 0.16.1 Search vendor "Simon Mcvittie" for product "Telepathy Gabble" and version "0.16.1" | - |
Affected
| ||||||
| Simon Mcvittie Search vendor "Simon Mcvittie" | Telepathy Gabble Search vendor "Simon Mcvittie" for product "Telepathy Gabble" | 0.16.2 Search vendor "Simon Mcvittie" for product "Telepathy Gabble" and version "0.16.2" | - |
Affected
| ||||||
| Simon Mcvittie Search vendor "Simon Mcvittie" | Telepathy Gabble Search vendor "Simon Mcvittie" for product "Telepathy Gabble" | 0.16.3 Search vendor "Simon Mcvittie" for product "Telepathy Gabble" and version "0.16.3" | - |
Affected
| ||||||
| Simon Mcvittie Search vendor "Simon Mcvittie" | Telepathy Gabble Search vendor "Simon Mcvittie" for product "Telepathy Gabble" | 0.16.4 Search vendor "Simon Mcvittie" for product "Telepathy Gabble" and version "0.16.4" | - |
Affected
| ||||||
| Simon Mcvittie Search vendor "Simon Mcvittie" | Telepathy Gabble Search vendor "Simon Mcvittie" for product "Telepathy Gabble" | 0.17.0 Search vendor "Simon Mcvittie" for product "Telepathy Gabble" and version "0.17.0" | - |
Affected
| ||||||
| Simon Mcvittie Search vendor "Simon Mcvittie" | Telepathy Gabble Search vendor "Simon Mcvittie" for product "Telepathy Gabble" | 0.17.1 Search vendor "Simon Mcvittie" for product "Telepathy Gabble" and version "0.17.1" | - |
Affected
| ||||||
| Simon Mcvittie Search vendor "Simon Mcvittie" | Telepathy Gabble Search vendor "Simon Mcvittie" for product "Telepathy Gabble" | 0.17.2 Search vendor "Simon Mcvittie" for product "Telepathy Gabble" and version "0.17.2" | - |
Affected
| ||||||