CVE-2010-0420

描述

libpurple in Finch in Pidgin before 2.6.6, when an XMPP multi-user chat (MUC) room is used, does not properly parse nicknames containing <br> sequences, which allows remote attackers to cause a denial of service (application crash) via a crafted nickname.

受影響套件(1)

• Debian/pidginfrom 0, < 2.6.6-1

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2010-0420