This script is Copyright (C) 2010-2016 Tenable Network Security, Inc.
An instant messaging client installed on the remote Windows host is
affected by a directory traversal vulnerability.
The version of Pidgin installed on the remote host is earlier than
2.6.5. Such versions have a directory traversal vulnerability when
processing an MSN emoticon request. A remote attacker could exploit
this to read arbitrary files.
See also :
Upgrade to Pidgin 2.6.5 or later.
Risk factor :
Medium / CVSS Base Score : 4.3
CVSS Temporal Score : 3.7
Public Exploit Available : true