cve-2016-4323-00

Summary Pidgin MXIT Splash Image Arbitrary File Overwrite Vulnerability
Date 2016-06-21
CVE Number CVE-2016-4323
Talos Report ID TALOS-2016-0128
Discovered By Yves Younan of Cisco Talos
Fixed In Release 2.11.0

Description

A malicious server or man-in-the-middle could trigger libpurple to overwrite a local file with the name and contents specified by the attacker.

Mitigation

We've launched the new site. Think we're missing something?
Read the blog post or Go to the old site