QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2008-2927

Back to search

CVE-2008-2927

Published: Jul 7, 2008

Modified: Aug 7, 2024

PUBLISHED

Description

Multiple integer overflows in the msn_slplink_process_msg functions in the MSN protocol handler in (1) libpurple/protocols/msn/slplink.c and (2) libpurple/protocols/msnp9/slplink.c in Pidgin before 2.4.3 and Adium before 1.3 allow remote attackers to execute arbitrary code via a malformed SLP message with a crafted offset value, a different vulnerability than CVE-2008-2955.

VendorProductVersions

n/a

n/a

affected
n/a

References

USN-675-2
vendor-advisory
x_refsource_UBUNTU
RHSA-2008:0584
vendor-advisory
x_refsource_REDHAT
32861
third-party-advisory
x_refsource_SECUNIA
1020451
vdb-entry
x_refsource_SECTRACK
30971
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:11695
vdb-entry
signature
x_refsource_OVAL
29956
vdb-entry
x_refsource_BID
MDVSA-2008:143
vendor-advisory
x_refsource_MANDRIVA
oval:org.mitre.oval:def:17972
vdb-entry
signature
x_refsource_OVAL
MDVSA-2009:127
vendor-advisory
x_refsource_MANDRIVA
31105
third-party-advisory
x_refsource_SECUNIA
USN-675-1
vendor-advisory
x_refsource_UBUNTU
31642
third-party-advisory
x_refsource_SECUNIA
32859
third-party-advisory
x_refsource_SECUNIA
31387
third-party-advisory
x_refsource_SECUNIA
DSA-1610
vendor-advisory
x_refsource_DEBIAN
31016
third-party-advisory
x_refsource_SECUNIA
ADV-2008-2032
vdb-entry
x_refsource_VUPEN
20080625 Pidgin 2.4.1 Vulnerability
mailing-list
x_refsource_BUGTRAQ
20080806 rPSA-2008-0246-1 gaim
mailing-list
x_refsource_BUGTRAQ

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now