CVE-2011-3185: Input Validation

First published: Mon Aug 29 2011(Updated: )

gtkutils.c in Pidgin before 2.10.0 on Windows allows user-assisted remote attackers to execute arbitrary programs via a file: URL in a message.

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
Microsoft Windows
Pidgin Pidgin	<=2.9.0
Pidgin Pidgin	=2.0.0
Pidgin Pidgin	=2.0.1
Pidgin Pidgin	=2.0.2
Pidgin Pidgin	=2.1.0
Pidgin Pidgin	=2.1.1
Pidgin Pidgin	=2.2.0
Pidgin Pidgin	=2.2.1
Pidgin Pidgin	=2.2.2
Pidgin Pidgin	=2.3.0
Pidgin Pidgin	=2.3.1
Pidgin Pidgin	=2.4.0
Pidgin Pidgin	=2.4.1
Pidgin Pidgin	=2.4.2
Pidgin Pidgin	=2.4.3
Pidgin Pidgin	=2.5.0
Pidgin Pidgin	=2.5.1
Pidgin Pidgin	=2.5.2
Pidgin Pidgin	=2.5.3
Pidgin Pidgin	=2.5.4
Pidgin Pidgin	=2.5.5
Pidgin Pidgin	=2.5.6
Pidgin Pidgin	=2.5.7
Pidgin Pidgin	=2.5.8
Pidgin Pidgin	=2.5.9
Pidgin Pidgin	=2.6.0
Pidgin Pidgin	=2.6.1
Pidgin Pidgin	=2.6.2
Pidgin Pidgin	=2.6.4
Pidgin Pidgin	=2.6.5
Pidgin Pidgin	=2.6.6
Pidgin Pidgin	=2.7.0
Pidgin Pidgin	=2.7.1
Pidgin Pidgin	=2.7.2
Pidgin Pidgin	=2.7.3
Pidgin Pidgin	=2.7.4
Pidgin Pidgin	=2.7.5
Pidgin Pidgin	=2.7.6
Pidgin Pidgin	=2.7.7
Pidgin Pidgin	=2.7.8
Pidgin Pidgin	=2.7.9
Pidgin Pidgin	=2.7.10
Pidgin Pidgin	=2.7.11
Pidgin Pidgin	=2.8.0

Never miss a vulnerability like this again

Reference Links

collector/nvd-historical
collector/nvd-index
agent/severity
agent/weakness
agent/references
agent/author
agent/type
agent/event
agent/description
agent/first-publish-date
agent/softwarecombine
agent/last-modified-date
agent/remedy
agent/tags
collector/mitre-cve
source/MITRE
vendor/microsoft
canonical/microsoft windows
vendor/pidgin
canonical/pidgin pidgin
version/pidgin pidgin/2.9.0
version/pidgin pidgin/2.0.0
version/pidgin pidgin/2.0.1
version/pidgin pidgin/2.0.2
version/pidgin pidgin/2.1.0
version/pidgin pidgin/2.1.1
version/pidgin pidgin/2.2.0
version/pidgin pidgin/2.2.1
version/pidgin pidgin/2.2.2
version/pidgin pidgin/2.3.0
version/pidgin pidgin/2.3.1
version/pidgin pidgin/2.4.0
version/pidgin pidgin/2.4.1
version/pidgin pidgin/2.4.2
version/pidgin pidgin/2.4.3
version/pidgin pidgin/2.5.0
version/pidgin pidgin/2.5.1
version/pidgin pidgin/2.5.2
version/pidgin pidgin/2.5.3
version/pidgin pidgin/2.5.4
version/pidgin pidgin/2.5.5
version/pidgin pidgin/2.5.6
version/pidgin pidgin/2.5.7
version/pidgin pidgin/2.5.8
version/pidgin pidgin/2.5.9
version/pidgin pidgin/2.6.0
version/pidgin pidgin/2.6.1
version/pidgin pidgin/2.6.2
version/pidgin pidgin/2.6.4
version/pidgin pidgin/2.6.5
version/pidgin pidgin/2.6.6
version/pidgin pidgin/2.7.0
version/pidgin pidgin/2.7.1
version/pidgin pidgin/2.7.2
version/pidgin pidgin/2.7.3
version/pidgin pidgin/2.7.4
version/pidgin pidgin/2.7.5
version/pidgin pidgin/2.7.6
version/pidgin pidgin/2.7.7
version/pidgin pidgin/2.7.8
version/pidgin pidgin/2.7.9
version/pidgin pidgin/2.7.10
version/pidgin pidgin/2.7.11
version/pidgin pidgin/2.8.0

CVE-2011-3185: Input Validation

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Company

Resources

Contact