Summary
The host is running Pidgin, which is prone to Security Bypass Vulnerability
Impact
Man-in-the-middle attacks or identity impersonation attacks are possible.
Impact Level : Network.
Solution
Apply the patch,
http://developer.pidgin.im/attachment/ticket/6500/nss-cert-verify.patc h
Insight
The application fails to properly validate SSL (Secure Sockets Layer) certificate from a server.
Affected
Pidgin Version 2.4.3 and prior on Linux.
References
Updated on 2015-03-25
Severity
Classification
-
CVSS Base Score: 7.8
AV:N/AC:L/Au:N/C:N/I:N/A:C
Related Vulnerabilities
- Adobe Flash Media Server multiple vulnerabilities
- Adobe Air Multiple Vulnerabilities June-2012 (Mac OS X)
- Adobe Acrobat Multiple Unspecified Vulnerabilities -01 Feb13 (Mac OS X)
- Adobe Flash Player Buffer Overflow Vulnerability - Apr14 (Mac OS X)
- Adobe Flash Player Arbitrary Code Execution Vulnerability - 01 Feb14 (Linux)