CVE-2008-3532

CVE-2008-3532 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

The NSS plugin in libpurple in Pidgin 2.4.3 does not verify SSL certificates, which makes it easier for remote attackers to trick a user into accepting an invalid server certificate for a spoofed service.

Learn more about our Cis Benchmark Audit For Server Software.