Integer overflow

2008-07-0723:41:00

PRIOn knowledge base

www.prio-n.com

7.5 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.107 Low

EPSS

Percentile

94.9%

JSON

Multiple integer overflows in the msn_slplink_process_msg functions in the MSN protocol handler in (1) libpurple/protocols/msn/slplink.c and (2) libpurple/protocols/msnp9/slplink.c in Pidgin before 2.4.3 and Adium before 1.3 allow remote attackers to execute arbitrary code via a malformed SLP message with a crafted offset value, a different vulnerability than CVE-2008-2955.

CPENameOperatorVersion
adiumeq1.0.2
adiumeq1.1
adiumeq1.0.1
adiumeq1.0.5
adiumeq1.1.2
adiumeq1.1.3
adiumeq1.1.4
adiumeq1.0.4
adiumle1.2.7
adiumeq1.0

Name	Operator	Version
adium	eq	1.0.2
adium	eq	1.1
adium	eq	1.0.1
adium	eq	1.0.5
adium	eq	1.1.2
adium	eq	1.1.3
adium	eq	1.1.4
adium	eq	1.0.4
adium	le	1.2.7
adium	eq	1.0

Rows per page:

1-10 of 251

References

developer.pidgin.im/viewmtn/revision/diff/6eb1949a96fa80a4c744fc749c2562abc4cc9ed6/with/c3831c9181f4f61b747321240086ee79e4a08fd8/libpurple/protocols/msn/slplink.c

developer.pidgin.im/viewmtn/revision/diff/6eb1949a96fa80a4c744fc749c2562abc4cc9ed6/with/c3831c9181f4f61b747321240086ee79e4a08fd8/libpurple/protocols/msnp9/slplink.c

secunia.com/advisories/30971

secunia.com/advisories/31016

secunia.com/advisories/31105

secunia.com/advisories/31387

secunia.com/advisories/31642

secunia.com/advisories/32859

secunia.com/advisories/32861

wiki.rpath.com/wiki/Advisories:rPSA-2008-0246

www.debian.org/security/2008/dsa-1610

www.mandriva.com/security/advisories?name=MDVSA-2008:143

www.mandriva.com/security/advisories?name=MDVSA-2009:127

www.openwall.com/lists/oss-security/2008/07/03/6