Showing 1 - 2 of 2

CVE-2017-5195

Status Candidate

Overview

Irssi 0.8.17 before 0.8.21 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted ANSI x8 color code.

Ubuntu Security Notice USN-3184-1: Posted Feb 2, 2017; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 3184-1 - It was discovered that the Irssi buf.pl script set incorrect permissions. A local attacker could use this issue to retrieve another user's window contents. Joseph Bisch discovered that Irssi incorrectly handled comparing nicks. A remote attacker could use this issue to cause Irssi to crash, resulting in a denial of service, or possibly execute arbitrary code. It was discovered that Irssi incorrectly handled invalid nick messages. A remote attacker could use this issue to cause Irssi to crash, resulting in a denial of service, or possibly execute arbitrary code. Various other issues were also addressed.; tags | advisory, remote, denial of service, arbitrary, local; systems | linux, ubuntu; advisories | CVE-2016-7553, CVE-2017-5193, CVE-2017-5194, CVE-2017-5195, CVE-2017-5196, CVE-2017-5356; SHA-256 | 8fffde546749a146e440119761742c9054a80582cb3f6cf8fcecc6028e307fd3; Download | Favorite | View

Gentoo Linux Security Advisory 201701-45: Posted Jan 20, 2017; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 201701-45 - Multiple vulnerabilities have been found in irssi, the worst of which could allow remote attackers to execute arbitrary code. Versions less than 0.8.21 are affected.; tags | advisory, remote, arbitrary, vulnerability; systems | linux, gentoo; advisories | CVE-2017-5193, CVE-2017-5194, CVE-2017-5195, CVE-2017-5196; SHA-256 | 1ce4d5296eb6fc4fbe7ef2d54633cb1af051a787849131a15865da18a86b185f; Download | Favorite | View

Page 1 of 1 Back 1 Next