Denial of Service Vulnerability in Pidgin's libpurple UPnP Response Handling

Denial of Service Vulnerability in Pidgin's libpurple UPnP Response Handling

CVE-2013-0274 · LOW Severity

AV:A/AC:M/AU:N/C:N/I:N/A:P

upnp.c in libpurple in Pidgin before 2.10.7 does not properly terminate long strings in UPnP responses, which allows remote attackers to cause a denial of service (application crash) by leveraging access to the local network.

Learn more about our Network Penetration Testing.