What is the severity of CVE-2010-0423?

The severity of CVE-2010-0423 is considered high due to its potential for causing denial of service by excessive CPU consumption.

How do I fix CVE-2010-0423?

To fix CVE-2010-0423, upgrade Pidgin to version 2.6.6 or later.

What versions of Pidgin are affected by CVE-2010-0423?

CVE-2010-0423 affects Pidgin versions prior to 2.6.6, including versions from 2.0.0 up to 2.6.5.

Can CVE-2010-0423 be exploited remotely?

Yes, CVE-2010-0423 can be exploited remotely by sending numerous emoticons in instant messages or chats.

What type of vulnerability is CVE-2010-0423?

CVE-2010-0423 is classified as a denial of service vulnerability.

Vulnerability/
CVE-2010-0423

medium

CWE

399

16/2/2010

24/2/2010

7/8/2024

CVE-2010-0423

First published: Tue Feb 16 2010(Updated: )

gtkimhtml.c in Pidgin before 2.6.6 allows remote attackers to cause a denial of service (CPU consumption and application hang) by sending many smileys in a (1) IM or (2) chat.

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
Pidgin	<=2.6.5
Pidgin	=2.0.0
Pidgin	=2.0.1
Pidgin	=2.0.2
Pidgin	=2.1.0
Pidgin	=2.1.1
Pidgin	=2.2.0
Pidgin	=2.2.1
Pidgin	=2.2.2
Pidgin	=2.3.0
Pidgin	=2.3.1
Pidgin	=2.4.0
Pidgin	=2.4.1
Pidgin	=2.4.2
Pidgin	=2.4.3
Pidgin	=2.5.0
Pidgin	=2.5.1
Pidgin	=2.5.2
Pidgin	=2.5.3
Pidgin	=2.5.4
Pidgin	=2.5.5
Pidgin	=2.5.6
Pidgin	=2.5.7
Pidgin	=2.5.8
Pidgin	=2.5.9
Pidgin	=2.6.0
Pidgin	=2.6.1
Pidgin	=2.6.2
Pidgin	=2.6.4

Remedy

http://pidgin.im/news/security/?id=45

Remedy

http://www.vupen.com/english/advisories/2010/0413

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2010-0423?
The severity of CVE-2010-0423 is considered high due to its potential for causing denial of service by excessive CPU consumption.
How do I fix CVE-2010-0423?
To fix CVE-2010-0423, upgrade Pidgin to version 2.6.6 or later.
What versions of Pidgin are affected by CVE-2010-0423?
CVE-2010-0423 affects Pidgin versions prior to 2.6.6, including versions from 2.0.0 up to 2.6.5.
Can CVE-2010-0423 be exploited remotely?
Yes, CVE-2010-0423 can be exploited remotely by sending numerous emoticons in instant messages or chats.
What type of vulnerability is CVE-2010-0423?
CVE-2010-0423 is classified as a denial of service vulnerability.

agent/type
agent/softwarecombine
agent/first-publish-date
agent/remedy
collector/mitre-cve
source/MITRE
agent/author
agent/severity
agent/references
agent/weakness
agent/last-modified-date
agent/description
agent/event
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2010-0423
agent/trending
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-historical
vendor/pidgin
canonical/pidgin
version/pidgin/2.6.5
version/pidgin/2.0.0
version/pidgin/2.0.1
version/pidgin/2.0.2
version/pidgin/2.1.0
version/pidgin/2.1.1
version/pidgin/2.2.0
version/pidgin/2.2.1
version/pidgin/2.2.2
version/pidgin/2.3.0
version/pidgin/2.3.1
version/pidgin/2.4.0
version/pidgin/2.4.1
version/pidgin/2.4.2
version/pidgin/2.4.3
version/pidgin/2.5.0
version/pidgin/2.5.1
version/pidgin/2.5.2
version/pidgin/2.5.3
version/pidgin/2.5.4
version/pidgin/2.5.5
version/pidgin/2.5.6
version/pidgin/2.5.7
version/pidgin/2.5.8
version/pidgin/2.5.9
version/pidgin/2.6.0
version/pidgin/2.6.1
version/pidgin/2.6.2
version/pidgin/2.6.4

CVE-2010-0423

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2010-0423?

How do I fix CVE-2010-0423?

What versions of Pidgin are affected by CVE-2010-0423?

Can CVE-2010-0423 be exploited remotely?

What type of vulnerability is CVE-2010-0423?

Company

Resources

Contact