Pidgin MSN Protocol Plugin Denial Of Service Vulnerability (Linux) Network Vulnerability

Summary

This host has Pidgin installed and is prone to Denial Of Service vulnerability

Impact

Attackers can exploit this issue to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors. Impact Level: Application

Solution

Upgrade to Pidgin version 2.6.6 or later. For updates refer to http://www.pidgin.im/download/

Insight

This issue is due to an error in 'slp.c' within the 'MSN protocol plugin' in 'libpurple' when processing MSN request.

Affected

Pidgin version prior to 2.6.4 on Linux.

References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=2010-0277
http://www.openwall.com/lists/oss-security/2010/01/07/2

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-0277
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

ejabberd 'mod_pubsub' Module Denial of Service Vulnerability
AVG Anti-Virus UPX Processing Denial of Service Vulnerability
Adobe Acrobat PDF File Denial Of Service Vulnerability
Apache Subversion 'mod_dav_svn' Module Multiple DoS Vulnerabilities
Comodo Internet Security Denial of Service Vulnerability-04

Take action and discover your vulnerabilities