Vulnerability Details : CVE-2009-2694
Public exploit exists!
The msn_slplink_process_msg function in libpurple/protocols/msn/slplink.c in libpurple, as used in Pidgin (formerly Gaim) before 2.5.9 and Adium 1.3.5 and earlier, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) by sending multiple crafted SLP (aka MSNSLP) messages to trigger an overwrite of an arbitrary memory location. NOTE: this issue reportedly exists because of an incomplete fix for CVE-2009-1376.
Vulnerability category: Memory CorruptionExecute codeDenial of service
Products affected by CVE-2009-2694
- cpe:2.3:a:pidgin:pidgin:*:*:*:*:*:*:*:*
- cpe:2.3:a:pidgin:pidgin:2.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:pidgin:pidgin:2.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:pidgin:pidgin:2.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:pidgin:pidgin:2.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:pidgin:pidgin:2.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:pidgin:pidgin:2.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:pidgin:pidgin:2.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:pidgin:pidgin:2.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:pidgin:pidgin:2.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:pidgin:pidgin:2.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:pidgin:pidgin:2.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:pidgin:pidgin:2.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:pidgin:pidgin:2.4.3:*:*:*:*:*:*:*
- cpe:2.3:a:pidgin:pidgin:2.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:pidgin:pidgin:2.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:pidgin:pidgin:2.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:pidgin:pidgin:2.5.3:*:*:*:*:*:*:*
- cpe:2.3:a:pidgin:pidgin:2.5.2:*:*:*:*:*:*:*
- cpe:2.3:a:pidgin:pidgin:2.5.4:*:*:*:*:*:*:*
- cpe:2.3:a:pidgin:pidgin:2.5.6:*:*:*:*:*:*:*
- cpe:2.3:a:pidgin:pidgin:2.5.7:*:*:*:*:*:*:*
- cpe:2.3:a:adium:adium:*:*:*:*:*:*:*:*
- cpe:2.3:a:adium:adium:1.3.3:*:*:*:*:*:*:*
- cpe:2.3:a:adium:adium:1.3.4:*:*:*:*:*:*:*
- cpe:2.3:a:adium:adium:1.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:adium:adium:1.3.2:*:*:*:*:*:*:*
- cpe:2.3:a:adium:adium:1.2.7:*:*:*:*:*:*:*
- cpe:2.3:a:adium:adium:1.3:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2009-2694
12.46%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 95 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2009-2694
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
NIST |
CWE ids for CVE-2009-2694
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2009-2694
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6320
404 Not Found
-
http://developer.pidgin.im/wiki/ChangeLog
ChangeLog – Pidgin
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10319
404 Not Found
-
http://sunsolve.sun.com/search/document.do?assetkey=1-66-266908-1
-
https://rhn.redhat.com/errata/RHSA-2009-1218.html
RHSA-2009:1218 - Security Advisory - Red Hat Customer PortalVendor Advisory
-
http://www.vupen.com/english/advisories/2009/2303
Site en constructionVendor Advisory
-
http://developer.pidgin.im/viewmtn/revision/info/6f7343166c673bf0496ecb1afec9b633c1d54a0e
404 Not FoundPatch
-
http://www.coresecurity.com/content/libpurple-arbitrary-write
Libpurple msn_slplink_process_msg() Arbitrary Write VulnerabilityExploit
-
http://www.pidgin.im/news/security/?id=34
404 Page not foundVendor Advisory
-
https://bugzilla.redhat.com/show_bug.cgi?id=514957
514957 – (CVE-2009-2694) CVE-2009-2694 pidgin: insufficient input validation in msn_slplink_process_msg()
-
http://www.vupen.com/english/advisories/2009/2663
Site en construction
-
http://www.exploit-db.com/exploits/9615
Pidgin MSN 2.5.8 - Remote Code Execution - Windows remote Exploit
-
http://www.debian.org/security/2009/dsa-1870
[SECURITY] [DSA 1870-1] New pidgin packages fix arbitrary code executionPatch
Jump to