Main Vulnerability Database Exploits ID:3857 - Exploit for Cleartext transmission of sensitive information in Pidgin - CVE-2012-1257

ID:3857 - Exploit for Cleartext transmission of sensitive information in Pidgin - CVE-2012-1257

Published: August 9, 2020

Vulnerability identifier: #VU35053

Vulnerability risk: Low

CVE-ID: CVE-2012-1257

CWE-ID: CWE-319

Exploitation vector: Local access

Vulnerable software:
Pidgin

Link to public exploit:

The vulnerability allows a local authenticated user to gain access to sensitive information.

Pidgin 2.10.0 uses DBUS for certain cleartext communication, which allows local users to obtain sensitive information via a dbus session monitor.

Install update from vendor's website.