Pidgin vulnerability

2009-08-2000:00:00

ubuntu.com

7.4 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.125 Low

EPSS

Percentile

95.4%

JSON

Releases

Ubuntu 9.04
Ubuntu 8.10
Ubuntu 8.04

Packages

pidgin -

Details

Federico Muttis discovered that Pidgin did not properly handle certain
malformed messages in the MSN protocol handler. A remote attacker could
send a specially crafted message and possibly execute arbitrary code with
user privileges.

OSVersionArchitecturePackageVersionFilename
Ubuntu9.04noarchpidgin< 1:2.5.5-1ubuntu8.4UNKNOWN
Ubuntu9.04noarchfinch< 1:2.5.5-1ubuntu8.4UNKNOWN
Ubuntu9.04noarchlibpurple0< 1:2.5.5-1ubuntu8.4UNKNOWN
Ubuntu9.04noarchpidgin< dbg-1:2.5.5-1ubuntu8.4UNKNOWN
Ubuntu8.10noarchpidgin< 1:2.5.2-0ubuntu1.4UNKNOWN
Ubuntu8.10noarchfinch< 1:2.5.2-0ubuntu1.4UNKNOWN
Ubuntu8.10noarchlibpurple0< 1:2.5.2-0ubuntu1.4UNKNOWN
Ubuntu8.10noarchpidgin< dbg-1:2.5.2-0ubuntu1.4UNKNOWN
Ubuntu8.04noarchpidgin< 1:2.4.1-1ubuntu2.6UNKNOWN
Ubuntu8.04noarchfinch< 1:2.4.1-1ubuntu2.6UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Ubuntu	9.04	noarch	pidgin	< 1:2.5.5-1ubuntu8.4	UNKNOWN
Ubuntu	9.04	noarch	finch	< 1:2.5.5-1ubuntu8.4	UNKNOWN
Ubuntu	9.04	noarch	libpurple0	< 1:2.5.5-1ubuntu8.4	UNKNOWN
Ubuntu	9.04	noarch	pidgin	< dbg-1:2.5.5-1ubuntu8.4	UNKNOWN
Ubuntu	8.10	noarch	pidgin	< 1:2.5.2-0ubuntu1.4	UNKNOWN
Ubuntu	8.10	noarch	finch	< 1:2.5.2-0ubuntu1.4	UNKNOWN
Ubuntu	8.10	noarch	libpurple0	< 1:2.5.2-0ubuntu1.4	UNKNOWN
Ubuntu	8.10	noarch	pidgin	< dbg-1:2.5.2-0ubuntu1.4	UNKNOWN
Ubuntu	8.04	noarch	pidgin	< 1:2.4.1-1ubuntu2.6	UNKNOWN
Ubuntu	8.04	noarch	finch	< 1:2.4.1-1ubuntu2.6	UNKNOWN