Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The msn_slp_process_msg function in libpurple/protocols/msn/slpcall.c in the MSN protocol plugin in libpurple 2.6.0 and 2.6.1, as used in Pidgin before 2.6.2, allows remote attackers to cause a denial of service (application crash) via a handwritten (aka Ink) message, related to an uninitialized variable and the incorrect "UTF16-LE" charset name.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Pidgin Libpurple SLP 拒绝服务漏洞
Vulnerability Description
Pidgin是一款跨平台的实时通信客户端,它支持多个常用的实时通信协议,用户可用同一个软件登录不同的实时通信服务。 MSN协议插件从入站的SLP invite消息中获得某些字段,如果其中缺少某些字段协议插件就会试图引用空指针,导致崩溃。 远程攻击者可以通过向Pidgin的libpurple库提交各种恶意会话消息导致拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A