pidgin -- multiple remote denial of service vulnerabilities

ID A2C4D3D5-4C7B-11DF-83FB-0015587E2CC1
Type freebsd
Reporter FreeBSD
Modified 2010-02-18T00:00:00


Three denial of service vulnerabilities where found in pidgin and allow remote attackers to crash the application. The developers summarized these problems as follows:

Pidgin can become unresponsive when displaying large numbers of smileys

Certain nicknames in group chat rooms can trigger a crash in Finch

Failure to validate all fields of an incoming message can trigger a crash