4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.059 Low
EPSS
Percentile
93.4%
Pidgin 2.4.1 allows remote attackers to cause a denial of service (crash)
via a long filename that contains certain characters, as demonstrated using
an MSN message that triggers the crash in the msn_slplink_process_msg
function.
Author | Note |
---|---|
mdeslaur | Code in Dapper doesn’t look vulnerable |