Computer Security
[EN] securityvulns.ru no-pyccku


pidgin DoS
Published:04.10.2007
Source:
SecurityVulns ID:8217
Type:remote
Threat Level:
5/10
Description:Application crash on user not on the target's buddy list sending a "nudge," a feature of the MSN protocol.
Affected:PIDGIN : pidgin 2.2
CVE:CVE-2007-4996 (libpurple in Pidgin before 2.2.1 does not properly handle MSN nudge messages from users who are not on the receiver's buddy list, which allows remote attackers to cause a denial of service (crash) via a nudge message that triggers an access of "an invalid memory location.")
Original documentdocumentFORESIGHT, FLEA-2007-0057-1 pidgin (04.10.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod