NULL Pointer Dereference and Application Crash Vulnerability in Pidgin's Chat Room Nickname Change Function

NULL Pointer Dereference and Application Crash Vulnerability in Pidgin's Chat Room Nickname Change Function

CVE-2011-4939 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:P

The pidgin_conv_chat_rename_user function in gtkconv.c in Pidgin before 2.10.2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) by changing a nickname while in an XMPP chat room.

Learn more about our User Device Pen Test.