CVE-2009-3085
EPSS 0.95%發布日:2009/9/8修改日:2026/4/28
描述
The XMPP protocol plugin in libpurple in Pidgin before 2.6.2 does not properly handle an error IQ stanza during an attempted fetch of a custom smiley, which allows remote attackers to cause a denial of service (application crash) via XHTML-IM content with cid: images.
受影響套件(1)
- Debian/pidginfrom 0, < 2.6.2-1