This script is Copyright (C) 2012-2016 Tenable Network Security, Inc.
An instant messaging client installed on the remote Windows host is
potentially affected by multiple denial of service vulnerabilities.
The version of Pidgin installed on the remote host is earlier than
2.10.4 and is, therefore, potentially affected by the following
- An error exists in the file 'libpurple/proxy.c' that
can allow certain file transfer requests to an invalid
pointer to be dereferenced, leading to application
- An error exists in the function
'msn_message_parse_payload' in the file
'libpurple/protocols/msn/msg.c' that can allow certain
characters or character encodings to crash the
See also :
Upgrade to Pidgin 2.10.4 or later.
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.3
Public Exploit Available : false