FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2009-2694

This CVE name corresponds to:

Entered Topic
2009-08-20 pidgin -- MSN overflow parsing SLP messages

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2009-2694 at cve.mitre.org

Details

Type Candidate
Name CVE-2009-2694
Phase Assigned(20090805)

Description

The msn_slplink_process_msg function in libpurple/protocols/msn/slplink.c in libpurple, as used in Pidgin (formerly Gaim) before 2.5.9 and Adium 1.3.5 and earlier, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) by sending multiple crafted SLP (aka MSNSLP) messages to trigger an overwrite of an arbitrary memory location. NOTE: this issue reportedly exists because of an incomplete fix for CVE-2009-1376.

References

Source Reference
EXPLOIT-DB 9615
MISC http://www.coresecurity.com/content/libpurple-arbitrary-write
CONFIRM http://developer.pidgin.im/viewmtn/revision/info/6f7343166c673bf0496ecb1afec9b633c1d54a0e
CONFIRM http://developer.pidgin.im/wiki/ChangeLog
CONFIRM http://www.pidgin.im/news/security/?id=34
CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=514957
DEBIAN DSA-1870
REDHAT RHSA-2009:1218
SUNALERT 266908
OVAL oval:org.mitre.oval:def:10319
OVAL oval:org.mitre.oval:def:6320
SECUNIA 36384
SECUNIA 36392
SECUNIA 36401
SECUNIA 36402
SECUNIA 36708
SECUNIA 37071
VUPEN ADV-2009-2303
VUPEN ADV-2009-2663

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.