Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
proxy.c in libpurple in Pidgin before 2.10.4 does not properly handle canceled SOCKS5 connection attempts, which allows user-assisted remote authenticated users to cause a denial of service (application crash) via a sequence of XMPP file-transfer requests.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Pidgin两个拒绝服务漏洞
Vulnerability Description
Pidgin是一款跨平台的实时通信客户端,它支持多个常用的实时通信协议,用户可用同一个软件登录不同的实时通信服务。 Pidgin 2.10.4之前版本中存在两个拒绝服务漏洞。 (1)一个漏洞源于SOCKS5代理处理码(libpurple/proxy.c)中的错误。攻击者可利用该漏洞解除无效指针或者通过发送多个特制文件传输请求导致崩溃。成功利用该漏洞需要受害者接受至少一个文件传输请求。 (2)另一个漏洞源于处理包含某些字符或者字符编码消息时"msn_message_parse_payload()" 函数(l
CVSS Information
N/A
Vulnerability Type
N/A