CVE-2009-1375
CVE-2009-1375
The PurpleCircBuffer implementation in Pidgin (formerly Gaim) before 2.5.6 does not properly maintain a certain buffer, which allows remote attackers to cause a denial of service (memory corruption and application crash) via vectors involving the (1) XMPP or (2) Sametime protocol.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://debian.org/security/2009/dsa-1805http://osvdb.org/54649https://bugzilla.redhat.com/show_bug.cgi?id=500491http://secunia.com/advisories/35188http://secunia.com/advisories/35194http://secunia.com/advisories/35202http://secunia.com/advisories/35215http://secunia.com/advisories/35294http://secunia.com/advisories/35329https://exchange.xforce.ibmcloud.com/vulnerabilities/50683https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10829https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00033.html