CVE-2008-2927

Priority
Description
Multiple integer overflows in the msn_slplink_process_msg functions in the
MSN protocol handler in (1) libpurple/protocols/msn/slplink.c and (2)
libpurple/protocols/msnp9/slplink.c in Pidgin before 2.4.3 and Adium before
1.3 allow remote attackers to execute arbitrary code via a malformed SLP
message with a crafted offset value, a different vulnerability than
CVE-2008-2955.
Notes
Package
Source: gaim (LP Ubuntu Debian)
Upstream:released (2.4.3)
More Information

Updated: 2020-03-18 21:58:22 UTC (commit 2ea7df7bd1e69e1e489978d2724a936eb3faa1b8)