SERVER-OTHER -- Snort has detected traffic exploiting vulnerabilities in a server in the network.
SERVER-OTHER Pidgin MXIT protocol handling splash_remove directory traversal attempt
A directory traversal exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent from the server could potentially result in an overwrite of files. A malicious server or someone with access to the network traffic can provide an invalid filename for a splash image triggering the vulnerability. Impact: CVSS base score 3.7 CVSS impact score 1.4 CVSS exploitability score 2.2 confidentialityImpact NONE integrityImpact LOW availabilityImpact LOW Details: Ease of Attack:
No information provided
No public information
No known false positives
Talos research team. This document was generated from data supplied by the national vulnerability database, a product of the national institute of standards and technology. For more information see [nvd].
No rule groups
CVE-2016-4323 |
Loading description
|