Summary
This host is installed with Pidgin and is prone to denial of service vulnerability.
Impact
Successful exploitation will allow remote attackers to cause the application to crash, denying service to legitimate users.
Impact Level: Application
Solution
Upgrade to Pidgin version 2.7.2 or later,
For updates refer to http://pidgin.im/download/windows/
Insight
The flaw is caused by a NULL pointer dereference error when processing malformed 'X-Status' messages, which could be exploited by attackers to crash an affected application, creating a denial of service condition.
Affected
Pidgin versions prior to 2.7.2
References
Severity
Classification
-
CVE CVE-2010-2528 -
CVSS Base Score: 4.0
AV:N/AC:L/Au:S/C:N/I:N/A:P
Related Vulnerabilities
- ejabberd XML Parsing Denial of Service Vulnerability (Windows)
- Firefox Browser Libxul Memory Leak Remote DoS Vulnerability - Win
- Adobe Reader 'AcroPDF.DLL' Denial of Service Vulnerability (Linux)
- ddrLPD Remote Denial of Service Vulnerability
- Apache Subversion 'mod_dav_svn' log REPORT Request DoS Vulnerability