The host is installed with Pidgin before 2.5.8 and is prone to denial of service vulnerability. The flaw is present in the OSCAR protocol implementation in Pidgin, which fails to handle a crafted ICQ web message that triggers allocation of a large amount of memory. Successful exploitation could allow remote attackers to cause a denial of service (application crash).