Directory Traversal Vulnerability in Pidgin's MXIT Protocol Handling

Directory Traversal Vulnerability in Pidgin's MXIT Protocol Handling

CVE-2016-4323 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:P

A directory traversal exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent from the server could potentially result in an overwrite of files. A malicious server or someone with access to the network traffic can provide an invalid filename for a splash image triggering the vulnerability.

Learn more about our Cis Benchmark Audit For Server Software.