CVE-2016-2366

Title:

PIDGIN MXIT TABLE COMMAND DENIAL OF SERVICE VULNERABILITY

CVE ID:

CVE-2016-2366

Description:

A denial of service vulnerability exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent via the server could potentially result in an out-of-bounds read. A malicious server or an attacker who intercepts the network traffic can send invalid data to trigger this vulnerability and cause a crash.

Find out more about CVE-2016-2366 from the MITRE CVE dictionary and NIST NVD.


CVSSV3 SCORE:

5.9 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

External References:

http://www.talosintel.com/reports/TALOS-2016-0134/
http://www.pidgin.im/news/security/?id=99

Share This:
Facebooktwittergoogle_plusredditpinterestlinkedintumblr