Pidgin MSN file download vulnerability

http://pidgin.im/news/security/?id=42

"A remote user can download arbitrary files from a libpurple-based client."

This vulnerability is through the custom emoticon ability with MSN and
pidgin. This has been fixed in v2.6.5.

It is recommended that MSN users upgrade to v2.6.5 to avoid exposure of
files.

Thanks,
ep