CVE-2010-0013

HIGH

Adium and Pidgin - Path Traversal via MSN Emoticon Request

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-0013. PoCs published by Mathieu GASPARD.

AI-analyzed exploit summary This Python script exploits CVE-2010-0013, a directory traversal vulnerability in Pidgin's MSN protocol handler, allowing arbitrary file disclosure from a victim's system. It uses the pymsn library to authenticate and send a crafted emoticon request to trigger the vulnerability.

Description

Directory traversal vulnerability in slp.c in the MSN protocol plugin in libpurple in Pidgin 2.6.4 and Adium 1.3.8 allows remote attackers to read arbitrary files via a .. (dot dot) in an application/x-msnmsgrp2p MSN emoticon (aka custom smiley) request, a related issue to CVE-2004-0122. NOTE: it could be argued that this is resultant from a vulnerability in which an emoticon download request is processed even without a preceding text/x-mms-emoticon message that announced availability of the emoticon.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Mathieu GASPARD · pythonremotemultiple
https://www.exploit-db.com/exploits/11203

This Python script exploits CVE-2010-0013, a directory traversal vulnerability in Pidgin's MSN protocol handler, allowing arbitrary file disclosure from a victim's system. It uses the pymsn library to authenticate and send a crafted emoticon request to trigger the vulnerability.

Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target: Pidgin <= 2.6.4 (and other libpurple-based clients)
Auth required
Prerequisites: Valid MSN credentials for the attacker's account · Victim must be online and using a vulnerable Pidgin version · pymsn library installed
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (24)

Core 24
Core References
Mailing List, Patch mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2010/01/02/1
Broken Link, Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/37953
Issue Tracking, Patch x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=552483
Broken Link vendor-advisory x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-66-277450-1
Broken Link, Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/37954
Broken Link vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2010:085
Mailing List mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2010/01/07/1
Broken Link vendor-advisory x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-77-1022203.1-1
Permissions Required, Vendor Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2009/3663
Permissions Required vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2010/1020
Permissions Required, Vendor Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2009/3662
Mailing List mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2010/01/07/2
Broken Link third-party-advisory x_refsource_secunia
http://secunia.com/advisories/37961
Broken Link third-party-advisory x_refsource_secunia
http://secunia.com/advisories/38915

Scores

CVSS v3 7.5
EPSS 0.1250
EPSS Percentile 95.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-22
Status published
Products (9)
adium/adium 1.3.8
fedoraproject/fedora 11
fedoraproject/fedora 12
opensuse/opensuse 11.0 - 11.2
pidgin/pidgin 2.6.4
redhat/enterprise_linux 4.0
redhat/enterprise_linux 5.0
suse/linux_enterprise 11.0
suse/linux_enterprise_server 10 sp2 (2 CPE variants)
Published Jan 09, 2010
Tracked Since Feb 18, 2026