Pidgin / lib purple XMPP remote crash
jv.gutierrezb at gmail.com
jv.gutierrezb at gmail.com
Sun May 6 02:43:39 EDT 2012
In all my tests the victim needs to accept the file transfer. The bug can be triggered with a successful transfer or with an incomplete transfer but always after the victim has accepted the file transfer.
El 06/05/2012, a las 03:28, Mark Doliner escribió:
> Paul's patch looks good to me (thanks, Paul!) I do have a question...
> in order to reproduce this bug, does the victim need to accept an
> incoming file transfer in order to be vulnerable? Or is it possible
> for a stranger to trigger this crash on any XMPP user?
More information about the security
mailing list