First published: Fri Oct 08 2010(Updated: )
The notify function in pidgin-knotify.c in the pidgin-knotify plugin 0.2.1 and earlier for Pidgin allows remote attackers to execute arbitrary commands via shell metacharacters in a message.
Credit: secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
Jianping Yu Pidgin-knotify | <=0.2.1 | |
Jianping Yu Pidgin-knotify | =0.1 | |
Jianping Yu Pidgin-knotify | =0.1.2 | |
Jianping Yu Pidgin-knotify | =0.2.0 | |
Pidgin Pidgin |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.