PT-2007-6105 · Pidgin · Pidgin

Published

2007-10-01

Updated

2018-10-15

CVE-2007-4996

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Pidgin versions prior to 2.2.1

Description The issue allows remote attackers to cause a denial of service, resulting in a crash, by sending a specific type of message that triggers an access of an invalid memory location. This occurs when handling MSN nudge messages from users who are not on the receiver's buddy list.

Recommendations For versions prior to 2.2.1, update to version 2.2.1 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-4996

Affected Products

Pidgin

PT-2007-6105 · Pidgin · Pidgin

CVE-2007-4996

Related Identifiers

Affected Products

References · 13