Lucene search

K
ubuntucveUbuntu.comUB:CVE-2010-0420
HistoryFeb 18, 2010 - 12:00 a.m.

CVE-2010-0420

2010-02-1800:00:00
ubuntu.com
ubuntu.com
6

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.097 Low

EPSS

Percentile

94.7%

libpurple in Finch in Pidgin before 2.6.6, when an XMPP multi-user chat
(MUC) room is used, does not properly parse nicknames containing <br>
sequences, which allows remote attackers to cause a denial of service
(application crash) via a crafted nickname.

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu8.04noarchpidgin< 1:2.4.1-1ubuntu2.9UNKNOWN
ubuntu8.10noarchpidgin< 1:2.5.2-0ubuntu1.7UNKNOWN
ubuntu9.04noarchpidgin< 1:2.5.5-1ubuntu8.6UNKNOWN
ubuntu9.10noarchpidgin< 1:2.6.2-1ubuntu7.2UNKNOWN

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.097 Low

EPSS

Percentile

94.7%

Related for UB:CVE-2010-0420