FreeBSD : pidgin -- MSN overflow parsing SLP messages (59e7af2d-8db7-11de-883b-001e3300a30d)
Critical Nessus Plugin ID 40691
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionSecunia reports :
A vulnerability has been reported in Pidgin, which can be exploited by malicious people to potentially compromise a user's system.
The vulnerability is caused due to an error in the 'msn_slplink_process_msg()' function when processing MSN SLP messages and can be exploited to corrupt memory.
Successful exploitation may allow execution of arbitrary code.
The vulnerability is reported in versions 2.5.8 and prior. Other versions may also be affected.
SolutionUpdate the affected packages.