[Pidgin] #15162: XChat Exploit (UTF8 chars?)

Pidgin trac at pidgin.im
Tue Jun 12 11:39:25 EDT 2012

#15162: XChat Exploit (UTF8 chars?)
 Reporter:  MisterPhilip     |     Owner:  datallah
     Type:  defect           |    Status:  new     
Component:  winpidgin (gtk)  |   Version:  2.10.4  
 Keywords:  xhat, utf8       |  
 If the text from line 3 of this [http://pastebin.com/YkwaS8Bn pastebin] is
 viewed within pidgin, it will immediately crash. The following scenarios
 can occur:[[BR]]
 1) User receives transmission with malicious text[[BR]]
 2) User pastes malicious text into the input box[[BR]]
 3) User views a log with malicious text[[BR]]
 4) User searches the log within an account that has previously received
 malicious text[[BR]][[BR]]
 I've been able to replicate this issue since at least 2.10 and am
 currently 2.10.4 on Win 7x64

Ticket URL: <http://developer.pidgin.im/ticket/15162>
Pidgin <http://pidgin.im>

More information about the Tracker mailing list