CVE-2010-4528

directconn.c in the MSN protocol plugin in libpurple 2.7.6 through 2.7.8 in Pidgin before 2.7.9 allows remote authenticated users to cause a denial of service NULL pointer dereference and application crash via a short p2pv2 packet in a DirectConnect aka direct connection session...

CVE-2010-4528

The CVE-2010-4528 issue affects the MSN protocol plugin in libpurple used by Pidgin, specifically in directconn.c for Pidgin versions 2.7.6–2.7.8. The flaw allows remote authenticated users to trigger a denial-of-service via a short p2pv2 DirectConnect (direct connection) packet, resulting in a N...