VDB
CVE-2008-2955
CVE-2008-2955
PUBLISHED
Reported by redhat · Published July 1, 2008
Pidgin 2.4.1 allows remote attackers to cause a denial of service (crash) via a long filename that contains certain characters, as demonstrated using an MSN message that triggers the crash in the msn_slplink_process_msg function.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| n/a | n/a | n/a, n/a, n/a |
Timeline
- Jul 1, 2008 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
- Oct 30, 2023 EPSS Score
References
- ADV-2008-1947 vdb-entryx_refsource_VUPEN
- 3966 third-party-advisoryx_refsource_SREASON
- oval:org.mitre.oval:def:18050 vdb-entrysignaturex_refsource_OVAL
- MDVSA-2009:025 vendor-advisoryx_refsource_MANDRIVA
- 29985 vdb-entryx_refsource_BID
- x_refsource_CONFIRM
- 33102 third-party-advisoryx_refsource_SECUNIA
- 20080626 Pidgin 2.4.1 Vulnerability mailing-listx_refsource_BUGTRAQ
- USN-675-1 vendor-advisoryx_refsource_UBUNTU
- 32859 third-party-advisoryx_refsource_SECUNIA
- oval:org.mitre.oval:def:10131 vdb-entrysignaturex_refsource_OVAL
- 30881 third-party-advisoryx_refsource_SECUNIA
- RHSA-2008:1023 vendor-advisoryx_refsource_REDHAT