Mandriva Update for pidgin MDVSA-2010:001 (pidgin)

Check for the Version of pidgin OpenVAS Vulnerability Test Mandriva Update for pidgin MDVSA-2010:001 pidgin Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

Directory traversal

Directory traversal vulnerability in slp.c in the MSN protocol plugin in libpurple in Pidgin 2.6.4 and Adium 1.3.8 allows remote attackers to read arbitrary files via a .. dot dot in an application/x-msnmsgrp2p MSN emoticon aka custom smiley request, a related issue to CVE-2004-0122. NOTE: it cou...

CVE-2004-0122

CVE-2004-0122 is described as affecting Microsoft MSN Messenger 6.0 and 6.1, allowing remote attackers to read arbitrary files via improper handling of certain requests. Connected advisories for pidgin/libpurple reference a related directory-traversal issue in the MSN protocol plugin (slp.c) that...