CVE-2010-0420

EPSS 3.3%

Published: 2/24/2010Modified: 4/28/2026

Description

libpurple in Finch in Pidgin before 2.6.6, when an XMPP multi-user chat (MUC) room is used, does not properly parse nicknames containing <br> sequences, which allows remote attackers to cause a denial of service (application crash) via a crafted nickname.

Affected packages (1)

Debian/pidginfrom 0, < 2.6.6-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2010-0420