Security Advisory

CVE-2009-1889

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2009-07-01 12:26:00

Last updated 2024-08-07 05:27:54

Assigner redhat

State PUBLISHED

Description

The OSCAR protocol implementation in Pidgin before 2.5.8 misinterprets the ICQWebMessage message type as the ICQSMS message type, which allows remote attackers to cause a denial of service (application crash) via a crafted ICQ web message that triggers allocation of a large amount of memory.

← Browse all CVEs View on cve.org ↗