Published: 03/07/2012 Updated: 29/12/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

msg.c in the MSN protocol plugin in libpurple in Pidgin prior to 2.10.4 does not properly handle crafted characters, which allows remote servers to cause a denial of service (application crash) by placing these characters in a text/plain message.

Vulnerable Product	Search on Vulmon	Subscribe to Product
pidgin pidgin 2.7.6
pidgin pidgin 2.7.7
pidgin pidgin 2.5.5
pidgin pidgin 2.0.0
pidgin pidgin 2.5.2
pidgin pidgin 2.5.8
pidgin pidgin 2.7.2
pidgin pidgin 2.7.0
pidgin pidgin 2.10.0
pidgin pidgin 2.10.1
pidgin pidgin 2.9.0
pidgin pidgin 2.5.9
pidgin pidgin 2.4.3
pidgin pidgin 2.7.8
pidgin pidgin 2.5.4
pidgin pidgin 2.3.0
pidgin pidgin 2.2.2
pidgin pidgin 2.6.4
pidgin pidgin 2.7.1
pidgin pidgin 2.5.7
pidgin pidgin 2.2.1
pidgin pidgin 2.7.9
pidgin pidgin 2.8.0
pidgin pidgin 2.6.2
pidgin pidgin 2.7.3
pidgin pidgin 2.6.6
pidgin pidgin 2.1.1
pidgin pidgin 2.0.1
pidgin pidgin 2.4.2
pidgin pidgin 2.3.1
pidgin pidgin 2.5.1
pidgin pidgin 2.6.5
pidgin pidgin 2.2.0
pidgin pidgin 2.5.6
pidgin pidgin 2.1.0
pidgin pidgin 2.7.10
pidgin pidgin 2.7.11
pidgin pidgin 2.6.1
pidgin pidgin 2.7.4
pidgin pidgin 2.7.5
pidgin pidgin 2.4.1
pidgin pidgin 2.4.0
pidgin pidgin 2.5.3
pidgin pidgin 2.5.0
pidgin pidgin 2.6.0
pidgin pidgin 2.0.2
pidgin pidgin 2.10.2
pidgin pidgin

Synopsis Moderate: pidgin security update Type/Severity Security Advisory: Moderate Topic Updated pidgin packages that fix three security issues are now availablefor Red Hat Enterprise Linux 5 and 6The Red Hat Security Response Team has rated this update as having moderatesecurity impact Common Vulnerabil ...

Several security issues were fixed in Pidgin ...

CWE-20 http://hg.pidgin.im/pidgin/main/rev/4d6bcb4f4ea4 http://pidgin.im/news/security/?id=63 https://hermes.opensuse.org/messages/15136503 http://www.securityfocus.com/bid/53400 http://rhn.redhat.com/errata/RHSA-2012-1102.html http://secunia.com/advisories/50005 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17448 http://www.mandriva.com/security/advisories?name=MDVSA-2012:082 https://access.redhat.com/errata/RHSA-2012:1102 https://usn.ubuntu.com/1500-1/https://nvd.nist.gov

CVE-2012-2318

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect