1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
|
PublicDateAtUSN: 2010-01-09
Candidate: CVE-2010-0013
PublicDate: 2010-01-09
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0013
http://events.ccc.de/congress/2009/Fahrplan/events/3596.en.html
http://pidgin.im/news/security/?id=42
http://www.ubuntu.com/usn/usn-886-1
Description:
Directory traversal vulnerability in slp.c in the MSN protocol plugin in
libpurple in Pidgin 2.6.4 and Adium 1.3.8 allows remote attackers to read
arbitrary files via a .. (dot dot) in an application/x-msnmsgrp2p MSN
emoticon (aka custom smiley) request, a related issue to CVE-2004-0122.
NOTE: it could be argued that this is resultant from a vulnerability in
which an emoticon download request is processed even without a preceding
text/x-mms-emoticon message that announced availability of the emoticon.
Ubuntu-Description:
Notes:
mdeslaur> pidgin in hardy doesn't support MSN_OBJECT_EMOTICON
Bugs:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=563206
https://bugs.launchpad.net/bugs/501089
Priority: medium
Discovered-by:
Assigned-to:
Patches_pidgin:
upstream: http://developer.pidgin.im/viewmtn/revision/info/4be2df4f72bd8a55cdae7f2554b73342a497c92f
upstream: http://developer.pidgin.im/viewmtn/revision/info/3d02401cf232459fc80c0837d31e05fae7ae5467
upstream: http://developer.pidgin.im/viewmtn/revision/info/c64a1adc8bda2b4aeaae1f273541afbc4f71b810
upstream_pidgin: needs-triage
dapper_pidgin: DNE
hardy_pidgin: not-affected (code not present)
intrepid_pidgin: released (1:2.5.2-0ubuntu1.6)
jaunty_pidgin: released (1:2.5.5-1ubuntu8.5)
karmic_pidgin: released (1:2.6.2-1ubuntu7.1)
devel_pidgin: not-affected (1:2.6.5-1ubuntu1)
|