[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96174

 
 

909

 
 

78077

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2009-2703

Date: (C)2009-09-08   (M)2017-09-22
 
CVSS Score: 5.0Access Vector: NETWORK
Exploitability Subscore: 10.0Access Complexity: LOW
Impact Subscore: 2.9Authentication: NONE
 Confidentiality: NONE
 Integrity: NONE
 Availability: PARTIAL











libpurple/protocols/irc/msgs.c in the IRC protocol plugin in libpurple in Pidgin before 2.6.2 allows remote IRC servers to cause a denial of service (NULL pointer dereference and application crash) via a TOPIC message that lacks a topic string.

Reference:
BID-36277
SECUNIA-36601
http://developer.pidgin.im/viewmtn/revision/info/ad2c6ee53ec9122b25aeb1f918db53be69bdeac3
http://www.pidgin.im/news/security/index.php?id=40

CPE    26
cpe:/a:pidgin:pidgin:2.5.8
cpe:/a:pidgin:pidgin:2.5.9
cpe:/a:pidgin:pidgin:2.6.0
cpe:/a:pidgin:pidgin:2.6.1
...
CWE    1
CWE-119
OVAL    17
oval:org.secpod.oval:def:100362
oval:org.secpod.oval:def:300584
oval:org.mitre.oval:def:6435
oval:org.secpod.oval:def:102160
...

© 2013 SecPod Technologies