[Pidgin] #15162: XChat Exploit (UTF8 chars?)
Pidgin
trac at pidgin.im
Tue Jun 12 11:39:25 EDT 2012
#15162: XChat Exploit (UTF8 chars?)
-----------------------------+----------------------------------------------
Reporter: MisterPhilip | Owner: datallah
Type: defect | Status: new
Component: winpidgin (gtk) | Version: 2.10.4
Keywords: xhat, utf8 |
-----------------------------+----------------------------------------------
If the text from line 3 of this [http://pastebin.com/YkwaS8Bn pastebin] is
viewed within pidgin, it will immediately crash. The following scenarios
can occur:[[BR]]
1) User receives transmission with malicious text[[BR]]
2) User pastes malicious text into the input box[[BR]]
3) User views a log with malicious text[[BR]]
4) User searches the log within an account that has previously received
malicious text[[BR]][[BR]]
I've been able to replicate this issue since at least 2.10 and am
currently 2.10.4 on Win 7x64
--
Ticket URL: <http://developer.pidgin.im/ticket/15162>
Pidgin <http://pidgin.im>
Pidgin
More information about the Tracker
mailing list