Loading
upnp.c in libpurple in Pidgin before 2.10.7 does not properly terminate long strings in UPnP responses, which allows remote attackers to cause a denial of service (application crash) by leveraging access to the local network.
Cite this page
CVE-2013-0274. CVEDatabase.com. Retrieved 1 May 2026. https://cvedatabase.com/cve/CVE-2013-0274
Use Pidgin vendor hub and Pidgin product page to widen CVE-2013-0274 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2016-1000030, CVE-2016-2378 and CVE-2016-2377 for nearby disclosures in the same product family.