Computer Security
[EN] securityvulns.ru no-pyccku


libpurple library / Pidgin DoS
Published:14.08.2010
Source:
SecurityVulns ID:11074
Type:library
Threat Level:
5/10
Description:NULL pointer dereference on OSCAR protocol messages parsing (ICQ, AIM)
Affected:PIDGIN : pidgin 2.7
 LIBPURPLE : libpurple 2.7
CVE:CVE-2010-2528 (The clientautoresp function in family_icbm.c in the oscar protocol plugin in libpurple in Pidgin before 2.7.2 allows remote authenticated users to cause a denial of service (NULL pointer dereference and application crash) via an X-Status message that lacks the expected end tag for a (1) desc or (2) title element.)
Original documentdocumentMANDRIVA, [ MDVSA-2010:148 ] pidgin (14.08.2010)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod