Описание
libpurple in Pidgin before 2.2.1 does not properly handle MSN nudge messages from users who are not on the receiver's buddy list, which allows remote attackers to cause a denial of service (crash) via a nudge message that triggers an access of "an invalid memory location."
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | not-affected | nudge code not present |
| edgy | not-affected | nudge code not vulnerable |
| feisty | not-affected | nudge code not vulnerable |
| upstream | not-affected |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | |
| upstream | released | 2.2.1 |
Показывать по
EPSS
4.3 Medium
CVSS2
Связанные уязвимости
libpurple in Pidgin before 2.2.1 does not properly handle MSN nudge messages from users who are not on the receiver's buddy list, which allows remote attackers to cause a denial of service (crash) via a nudge message that triggers an access of "an invalid memory location."
libpurple in Pidgin before 2.2.1 does not properly handle MSN nudge messages from users who are not on the receiver's buddy list, which allows remote attackers to cause a denial of service (crash) via a nudge message that triggers an access of "an invalid memory location."
libpurple in Pidgin before 2.2.1 does not properly handle MSN nudge me ...
libpurple in Pidgin before 2.2.1 does not properly handle MSN nudge messages from users who are not on the receiver's buddy list, which allows remote attackers to cause a denial of service (crash) via a nudge message that triggers an access of "an invalid memory location."
EPSS
4.3 Medium
CVSS2