Summary Pidgin MXIT MultiMX Message Code Execution Vulnerability
Date 2016-06-21
CVE Number CVE-2016-2374
Talos Report ID TALOS-2016-0142
Discovered By Yves Younan of Cisco Talos
Fixed In Release 2.11.0


A malicious server or man-in-the-middle could trigger a crash or potentially arbitrary code execution.


Validate the incoming message format.

We've launched the new site. Think we're missing something?
Read the blog post or Go to the old site