libpurple in Pidgin 2.1.0 up to and including 2.2.1, when using HTML logging, allows remote malicious users to cause a denial of service (NULL dereference and application crash) via a message that contains invalid HTML data, a different vector than CVE-2007-4996.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
pidgin pidgin 2.2.1 |
||
pidgin pidgin 2.1.0 |
||
pidgin pidgin 2.2.0 |