The clientautoresp function in family_icbm.c in the oscar protocol plugin in libpurple in Pidgin before 2.7.2 allows remote authenticated users to cause a denial of service (NULL pointer dereference and application crash) via an X-Status message that lacks the expected end tag for a (1) desc or (2) title element.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: redhat
Published:
Updated: 2024-08-07T02:39:37.341Z
Reserved: 2010-06-30T00:00:00
Link: CVE-2010-2528

No data.

Status : Modified
Published: 2010-07-30T13:26:15.067
Modified: 2024-11-21T01:16:50.657
Link: CVE-2010-2528
