Computer Security

CVE-2008-2927
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



CVECVE-2008-2927
StatusCandidate
DescriptionMultiple integer overflows in the msn_slplink_process_msg functions in the MSN protocol handler in (1) libpurple/protocols/msn/slplink.c and (2) libpurple/protocols/msnp9/slplink.c in Pidgin before 2.4.3 allow remote attackers to execute arbitrary code via a malformed SLP message, a different vulnerability than CVE-2008-2955.
PhaseAssigned (30.06.2008)
NVD:http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-2927
ReferencesCONFIRM : http://developer.pidgin.im/viewmtn/revision/diff/6...
 CONFIRM : http://developer.pidgin.im/viewmtn/revision/diff/6...
 CONFIRM : https://bugzilla.redhat.com/show_bug.cgi?id=453764
 MLIST : [oss-security] 20080703 Re: Re: CVE Request (pidgin)
 MLIST : [oss-security] 20080704 Re: Re: CVE Request (pidgin)
SecurityVulns:libpurple / Pidgin buffer overflow
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod
 


Rating@Mail.ru