| Summary | Pidgin MXIT Splash Image Arbitrary File Overwrite Vulnerability |
|---|---|
| Date | 2016-06-21 |
| CVE Number | CVE-2016-4323 |
| Talos Report ID | TALOS-2016-0128 |
| Discovered By | Yves Younan of Cisco Talos |
| Fixed In Release | 2.11.0 |
A malicious server or man-in-the-middle could trigger libpurple to overwrite a local file with the name and contents specified by the attacker.