Pidgin OSCAR Protocol Denial Of Service Vulnerability (Win)

Summary
This host has installed Pidgin and is prone to Denial of Service vulnerability.
Impact
Successful exploitation will allow attacker to cause a application crash. Impact Level: Application
Solution
Upgrade to Pidgin version 2.5.8, http://pidgin.im/download
Insight
Error in OSCAR protocol implementation leads to the application misinterpreting the ICQWebMessage message type as ICQSMS message type via a crafted ICQ web message that triggers allocation of a large amount of memory.
Affected
Pidgin version prior to 2.5.8 on Windows
References