CVE-2011-3185

N/A Unknown

Published: August 29, 2011 Modified: April 29, 2026

Description

gtkutils.c in Pidgin before 2.10.0 on Windows allows user-assisted remote attackers to execute arbitrary programs via a file: URL in a message.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://developer.pidgin.im/viewmtn/revision/diff/29484df15413fe3bbd21bbfcef26a55362055a81/with/5749f9193063800d27bef75c2388f6f9cc2f7f37/pidgin/gtkutils.c

Source: secalert@redhat.com

Patch

http://developer.pidgin.im/viewmtn/revision/info/5749f9193063800d27bef75c2388f6f9cc2f7f37

Source: secalert@redhat.com

Patch

http://pidgin.im/news/security/?id=55

Source: secalert@redhat.com

Patch Vendor Advisory

http://secunia.com/advisories/45663

Source: secalert@redhat.com

Vendor Advisory

http://securitytracker.com/id?1025961

Source: secalert@redhat.com

http://www.insomniasec.com/advisories/ISVA-110822.1.htm

Source: secalert@redhat.com

http://www.openwall.com/lists/oss-security/2011/08/22/

Source: secalert@redhat.com

http://www.openwall.com/lists/oss-security/2011/08/22/10

Source: secalert@redhat.com

http://www.openwall.com/lists/oss-security/2011/08/22/12

Source: secalert@redhat.com

http://www.openwall.com/lists/oss-security/2011/08/22/7

Source: secalert@redhat.com

http://www.securityfocus.com/archive/1/519391/100/0/threaded

Source: secalert@redhat.com

http://www.securityfocus.com/bid/49268

Source: secalert@redhat.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/69342

Source: secalert@redhat.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18324

Source: secalert@redhat.com

http://developer.pidgin.im/viewmtn/revision/diff/29484df15413fe3bbd21bbfcef26a55362055a81/with/5749f9193063800d27bef75c2388f6f9cc2f7f37/pidgin/gtkutils.c

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://developer.pidgin.im/viewmtn/revision/info/5749f9193063800d27bef75c2388f6f9cc2f7f37

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://pidgin.im/news/security/?id=55

Source: af854a3a-2127-422b-91ae-364da2661108

Patch Vendor Advisory

http://secunia.com/advisories/45663

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://securitytracker.com/id?1025961

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.insomniasec.com/advisories/ISVA-110822.1.htm

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.openwall.com/lists/oss-security/2011/08/22/

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.openwall.com/lists/oss-security/2011/08/22/10

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.openwall.com/lists/oss-security/2011/08/22/12

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.openwall.com/lists/oss-security/2011/08/22/7

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/519391/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/49268

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/69342

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18324

Source: af854a3a-2127-422b-91ae-364da2661108

28 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

4.8%

91th percentile

Exploitation Status

Not in CISA KEV

Weaknesses (CWE)

CWE-20

Affected Vendors

pidgin microsoft

Related CVEs

CVE-2026-12415 9.8

CVE-2026-13422 4.3

CVE-2026-13335 6.4

CVE-2026-13333 6.5

CVE-2026-13331 6.5