The host is installed with Pidgin 2.4.3 and is prone to arbitrary code execution vulnerability. A flaw is present in the NSS plugin in libpurple in Pidgin, which does not verify SSL certificates. Successful exploitation could allow remote attackers to trick a user into accepting an invalid server certificate for a spoofed service.