CVE-2008-2957 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2008-2957
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-2957

Description: The UPnP functionality in Pidgin 2.0.0, and possibly other versions, allows remote attackers to trigger the download of arbitrary files and cause a denial of service (memory or disk consumption) via a UDP packet that specifies an arbitrary URL.

CVE Status: Candidate

References: SAID Secunia Advisory: SA33102 REDHAT http://www.redhat.com/support/errata/RHSA-2008-1023.html MLIST http://www.openwall.com/lists/oss-security/2008/06/27/3 MISC http://crisp.cs.du.edu/?q=ca2007-1 MANDRIVA http://www.mandriva.com/security/advisories?name=MDVSA-2009:025 CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2008-493.htm BID 29985

Return to the previous page.