Oracle Solaris Third-Party Patch Update : pidgin (cve_2012_3374_buffer_overflow)
High Nessus Plugin ID 80739
SynopsisThe remote Solaris system is missing a security patch for third-party software.
DescriptionThe remote Solaris system is missing necessary patches to address security updates :
- Buffer overflow in markup.c in the MXit protocol plugin in libpurple in Pidgin before 2.10.5 allows remote attackers to execute arbitrary code via a crafted inline image in a message. (CVE-2012-3374)
SolutionUpgrade to Solaris 11.1.