CVE-2016-2376

Summary

A buffer overflow vulnerability exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent from the server could potentially result in arbitrary code execution. A malicious server or an attacker who intercepts the network traffic can send an invalid size for a packet which will trigger a buffer overflow.

Affected Software

VendorProductVersion RangeStatus
PidginPidgin2.10.11affected

Weaknesses

  • buffer overflow

ADP Enrichment

CVE Program Container

Additional References

References