Pidgin Security Advisory

TitlePidgin MXIT Splash Image Arbitrary File Overwrite Vulnerability
CVE NameCVE 2016-4323
Discovered ByYves Younan of Cisco Talos
DescriptionA malicious server or man-in-the-middle could trigger libpurple to overwrite a local file with the name and contents specified by the attacker. (TALOS-CAN-0128)
Fixed in Version2.11.0

Return to Security Advisory Index