Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2008-2927
Description:Multiple integer overflows in the msn_slplink_process_msg functions in the MSN protocol handler in (1) libpurple/protocols/msn/slplink.c and (2) libpurple/protocols/msnp9/slplink.c in Pidgin before 2.4.3 and Adium before 1.3 allow remote attackers to execute arbitrary code via a malformed SLP message with a crafted offset value, a different vulnerability than CVE-2008-2955.
Test IDs:  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2008-2927
BugTraq ID: 29956
Bugtraq: 20080625 Pidgin 2.4.1 Vulnerability (Google Search)
Bugtraq: 20080806 rPSA-2008-0246-1 gaim (Google Search)
Bugtraq: 20080828 ZDI-08-054: Multiple Vendor libpurple MSN Protocol SLP Message Heap Overflow Vulnerability (Google Search)
Debian Security Information: DSA-1610 (Google Search)
RedHat Security Advisories: RHSA-2008:0584
XForce ISS Database: adium-msnprotocol-code-execution(44774)

© 1998-2021 E-Soft Inc. All rights reserved.