VulnerableCode Vulnerability Details

Search for vulnerabilities

System	Score	Found at
epss	0.17668	https://api.first.org/data/v1/epss?cve=CVE-2008-2955
epss	0.17668	https://api.first.org/data/v1/epss?cve=CVE-2008-2955
epss	0.17668	https://api.first.org/data/v1/epss?cve=CVE-2008-2955
epss	0.17668	https://api.first.org/data/v1/epss?cve=CVE-2008-2955
epss	0.17668	https://api.first.org/data/v1/epss?cve=CVE-2008-2955
epss	0.17668	https://api.first.org/data/v1/epss?cve=CVE-2008-2955
epss	0.17668	https://api.first.org/data/v1/epss?cve=CVE-2008-2955
epss	0.17668	https://api.first.org/data/v1/epss?cve=CVE-2008-2955
epss	0.17668	https://api.first.org/data/v1/epss?cve=CVE-2008-2955
epss	0.17668	https://api.first.org/data/v1/epss?cve=CVE-2008-2955
epss	0.17668	https://api.first.org/data/v1/epss?cve=CVE-2008-2955
epss	0.17668	https://api.first.org/data/v1/epss?cve=CVE-2008-2955
epss	0.17668	https://api.first.org/data/v1/epss?cve=CVE-2008-2955
cvssv2	4.3	https://nvd.nist.gov/vuln/detail/CVE-2008-2955

System

Score

Found at

epss

0.17668

https://api.first.org/data/v1/epss?cve=CVE-2008-2955

epss

0.17668

https://api.first.org/data/v1/epss?cve=CVE-2008-2955

epss

0.17668

https://api.first.org/data/v1/epss?cve=CVE-2008-2955

epss

0.17668

https://api.first.org/data/v1/epss?cve=CVE-2008-2955

epss

0.17668

https://api.first.org/data/v1/epss?cve=CVE-2008-2955

epss

0.17668

https://api.first.org/data/v1/epss?cve=CVE-2008-2955

epss

0.17668

https://api.first.org/data/v1/epss?cve=CVE-2008-2955

epss

0.17668

https://api.first.org/data/v1/epss?cve=CVE-2008-2955

epss

0.17668

https://api.first.org/data/v1/epss?cve=CVE-2008-2955

epss

0.17668

https://api.first.org/data/v1/epss?cve=CVE-2008-2955

epss

0.17668

https://api.first.org/data/v1/epss?cve=CVE-2008-2955

epss

0.17668

https://api.first.org/data/v1/epss?cve=CVE-2008-2955

epss

0.17668

https://api.first.org/data/v1/epss?cve=CVE-2008-2955

cvssv2

4.3

https://nvd.nist.gov/vuln/detail/CVE-2008-2955

Reference id

Reference type

URL

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2955.json

https://api.first.org/data/v1/epss?cve=CVE-2008-2955

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2955

http://secunia.com/advisories/30881

http://secunia.com/advisories/32859

http://secunia.com/advisories/33102

http://securityreason.com/securityalert/3966

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10131

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18050

http://support.avaya.com/elmodocs2/security/ASA-2008-493.htm

http://www.mandriva.com/security/advisories?name=MDVSA-2009:025

http://www.redhat.com/support/errata/RHSA-2008-1023.html

http://www.securityfocus.com/archive/1/493682/100/0/threaded

http://www.securityfocus.com/bid/29985

http://www.ubuntu.com/usn/USN-675-1

http://www.vupen.com/english/advisories/2008/1947

453736

https://bugzilla.redhat.com/show_bug.cgi?id=453736

488632

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=488632

cpe:2.3:a:pidgin:pidgin:2.4.1:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:pidgin:pidgin:2.4.1:*:*:*:*:*:*:*

CVE-2008-2955

https://nvd.nist.gov/vuln/detail/CVE-2008-2955

CVE-2008-2955;OSVDB-46576

Exploit

https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/32749.txt

CVE-2008-2955;OSVDB-46576

Exploit

https://www.securityfocus.com/bid/33414/info

GLSA-200901-13

https://security.gentoo.org/glsa/200901-13

RHSA-2008:1023

https://access.redhat.com/errata/RHSA-2008:1023

USN-675-1

https://usn.ubuntu.com/675-1/

USN-886-1

https://usn.ubuntu.com/886-1/

Data source	Exploit-DB
Date added	Jan. 26, 2009
Description	Pidgin 2.4.2 - 'msn_slplink_process_msg()' Denial of Service
Ransomware campaign use	Known
Source publication date	Jan. 26, 2009
Exploit type	dos
Platform	linux
Source update date	April 8, 2014
Source URL	https://www.securityfocus.com/bid/33414/info

Exploit-DB

Jan. 26, 2009

Pidgin 2.4.2 - 'msn_slplink_process_msg()' Denial of Service

Known

Jan. 26, 2009

dos

linux

April 8, 2014

https://www.securityfocus.com/bid/33414/info

Exploitability (E)	Access Vector (AV)	Access Complexity (AC)	Authentication (Au)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
high functional unproven proof_of_concept not_defined	local adjacent_network network	high medium low	multiple single none	none partial complete	none partial complete	none partial complete

Exploitability (E)

Access Vector (AV)

Access Complexity (AC)

Authentication (Au)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

partial

complete

none

partial

complete

none

partial

complete

Date	Actor	Action	Source	VulnerableCode Version
2026-04-01T13:01:42.973738+00:00	Gentoo Importer	Import	https://security.gentoo.org/glsa/200901-13	38.0.0

2026-04-01T13:01:42.973738+00:00

Gentoo Importer

Import

https://security.gentoo.org/glsa/200901-13

38.0.0

Vulnerability ID	VCID-9sg6-dv5z-sbfq
Aliases	CVE-2008-2955
Summary	Multiple vulnerabilities have been discovered in Pidgin, allowing for remote arbitrary code execution, Denial of Service and service spoofing.
Status	Published
Exploitability	2.0
Weighted Severity	3.9
Risk	7.8
Affected and Fixed Packages	Package Details

Percentile	0.95072
EPSS Score	0.17668
Published At	April 1, 2026, 12:55 p.m.