This script is Copyright (C) 2008-2016 Tenable Network Security, Inc.
The remote openSUSE host is missing a security update.
- specially crafted MSN SLP messages could cause an
integer overflow in pidgin. Attackers could potentially
exploit that to execute arbitrary code (CVE-2008-2927).
- overly long file names in MSN file transfers could crash
- SSL certifcates were not verfied. Therefore piding
didn't notice faked certificates (CVE-2008-3532)
Additionally a problem was fixed that prevented gaim clients from
connecting to the ICQ network after a server change on July 1st 2008.
Update the affected finch packages.
Risk factor :
Medium / CVSS Base Score : 6.8