Showing 1 - 6 of 6

Files

xxchat-socks5.c: Posted May 4, 2004; Authored by vade79; X-Chat versions 2.0.8 through 1.8.0 remote exploit that makes use of a buffer overflow in the SOCKS-5 proxy code. Successful exploitation binds a shell to port 7979.; tags | exploit, remote, overflow, shell; SHA-256 | 2fee8170f90a051fd47c72f81150fec692e3bf4fac546c3cd394c69c90bc8001; Download | Favorite | View

Related Files

Mandriva Linux Security Advisory 2009-059: Posted Dec 9, 2009; Authored by Mandriva | Site mandriva.com; Mandriva Linux Security Advisory 2009-059 - Python has a variable called sys.path that contains all paths where Python loads modules by using import scripting procedure. A wrong handling of that variable enables local attackers to execute arbitrary code via Python scripting in the current X-Chat working directory. This update provides fix for that vulnerability. Packages for 2008.0 are being provided due to extended support for Corporate products.; tags | advisory, arbitrary, local, python; systems | linux, mandriva; advisories | CVE-2009-0315; SHA-256 | e41de6e8cc24cdf26f1fc4e97c1dbeab4c45e1ebf1dfe5c7e0b74c0ee164b69b; Download | Favorite | View

Mandriva Linux Security Advisory 2009-059: Posted Feb 27, 2009; Authored by Mandriva | Site mandriva.com; Mandriva Linux Security Advisory 2009-059 - Python has a variable called sys.path that contains all paths where Python loads modules by using import scripting procedure. A wrong handling of that variable enables local attackers to execute arbitrary code via Python scripting in the current X-Chat working directory. This update provides fix for that vulnerability.; tags | advisory, arbitrary, local, python; systems | linux, mandriva; advisories | CVE-2009-0315; SHA-256 | 55eb7ee2984a0261f4e1d3e3a07fbf4f4009ab5f3c9d743c92ba52b69507a769; Download | Favorite | View

xchat267.txt: Posted Aug 27, 2006; Authored by ratboy; X-Chat versions 2.6.7 and below remote denial of service exploit.; tags | exploit, remote, denial of service; SHA-256 | 4c8058087fec067b902621eb1e9a725bdd8a45287169251b5c862a208170ed12; Download | Favorite | View

msg00000.html: Posted Apr 19, 2004; Authored by tsifra | Site xchat.org; XChat versions 2.0.8 through 1.8.0 are vulnerable to a boundary error condition in their SOCKS-5 proxy code. Successful exploitation can lead to a complete system compromise.; tags | advisory; SHA-256 | d5f20b76db2c8dc08bf4e18ba72b64835cbb45e7648c299108cb57c4fec1bc1e; Download | Favorite | View

xchat.c: Posted May 25, 2001; Authored by Sector X | Site crosswinds.net; X-Chat v1.2.x format string bug exploit. Tested against x-chat v1.2.1 on Slackware 7.1.; tags | exploit; systems | linux, slackware; SHA-256 | b469eda18d6e1805cd4e8a0be2fbb3cb43284ad07087b99b32725d1ff02f9fc4; Download | Favorite | View

debian.xchat.txt: Posted Aug 30, 2000; Site debian.org; Debian Linux Security Advisories - The version of X-Chat that was distributed with Debian GNU/Linux 2.2 has a vulnerability in the URL handling code: when a user clicks on a URL X-Chat will start netscape to view its target. However it did not check the URL for shell metacharacters, and this could be abused to trick xchat into executing arbitraty commands. This has been fixed in version 1.4.3-0.1, and we recommend you upgrade your xchat package(s) immediately.; tags | shell; systems | linux, debian; SHA-256 | 92ea17ad4b9f5d402e151a4484533f7e07caad18dba33aa33f837e36d1ba8144; Download | Favorite | View

Page 1 of 1 Back 1 Next