CVE-2008-2927
MEDIUM
6.8
CVSS Severity Score
Vulnerability Description
Multiple integer overflows in the msn_slplink_process_msg functions in the MSN protocol handler in (1) libpurple/protocols/msn/slplink.c and (2) libpurple/protocols/msnp9/slplink.c in Pidgin before 2.4.3 and Adium before 1.3 allow remote attackers to execute arbitrary code via a malformed SLP message with a crafted offset value, a different vulnerability than CVE-2008-2955.
Affected Platforms (CPE)
📦
Pidgin
Pidgin
<= 2.4.2📦
Pidgin
Pidgin
= 2.0.0📦
Pidgin
Pidgin
= 2.0.1📦
Pidgin
Pidgin
= 2.0.2📦
Pidgin
Pidgin
= 2.1.0📦
Pidgin
Pidgin
= 2.1.1📦
Pidgin
Pidgin
= 2.2.0📦
Pidgin
Pidgin
= 2.2.1📦
Pidgin
Pidgin
= 2.2.2📦
Pidgin
Pidgin
= 2.3.0📦
Pidgin
Pidgin
= 2.3.1📦
Pidgin
Pidgin
= 2.4.0📦
Pidgin
Pidgin
= 2.4.1📦
Adium
Adium
<= 1.2.7📦
Adium
Adium
= 1.0📦
Adium
Adium
= 1.0.1📦
Adium
Adium
= 1.0.2📦
Adium
Adium
= 1.0.3📦
Adium
Adium
= 1.0.4📦
Adium
Adium
= 1.0.5📦
Adium
Adium
= 1.1📦
Adium
Adium
= 1.1.1📦
Adium
Adium
= 1.1.2📦
Adium
Adium
= 1.1.3📦
Adium