This script is Copyright (C) 2010-2016 Tenable Network Security, Inc.
The remote Mandriva Linux host is missing one or more security
Multiple security vulnerabilities has been identified and fixed in
Certain malformed SLP messages can trigger a crash because the MSN
protocol plugin fails to check that all pieces of the message are set
In a user in a multi-user chat room has a nickname containing '<br>'
then libpurple ends up having two users with username ' ' in the room,
and Finch crashes in this situation. We do not believe there is a
possibility of remote code execution (CVE-2010-0420).
oCERT notified us about a problem in Pidgin, where a large amount of
processing time will be used when inserting many smileys into an IM or
chat window. This should not cause a crash, but Pidgin can become
unusable slow (CVE-2010-0423).
Packages for 2008.0 are provided for Corporate Desktop 2008.0
This update provides pidgin 2.6.6, which is not vulnerable to these
See also :
Update the affected packages.
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.3
Public Exploit Available : true
Family: Mandriva Local Security Checks
Nessus Plugin ID: 44664 (mandriva_MDVSA-2010-041.nasl)
Bugtraq ID: 38294
Get Nessus Professional to scan unlimited IPs, run compliance checks & moreBuy Nessus Professional Now