PT-2010-2074 · Adium+2 · Adium+2

Josh Bressers

Published

2010-01-09

Updated

2017-09-19

CVE-2010-0277

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Pidgin versions prior to 2.6.6 Adium version 1.3.8

Description The issue allows remote attackers to cause a denial of service, resulting in memory corruption and application crash, or possibly have other unspecified impacts. This is achieved via a malformed MSNSLP INVITE request in an SLP message.

Recommendations For Pidgin versions prior to 2.6.6, update to version 2.6.6 or later to resolve the issue. For Adium version 1.3.8, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-399

Related Identifiers

CVE-2010-0277

DSA-2038-1

OPENSUSE-SU-2024:10432-1

RHSA-2010:0115

RHSA-2010_0115

Affected Products

Adium

Pidgin

Red Hat

PT-2010-2074 · Adium+2 · Adium+2

CVE-2010-0277

Weakness Enumeration

Related Identifiers

Affected Products

References · 34