Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
irssi vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2010-1155
Irssi prior to 0.8.15, when SSL is used, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) field or a Subject Alternative Name field of the X.509 certificate, which allows man-in-the-middle malicious users to spoof IRC servers v...
Irssi Irssi 0.8.5
Irssi Irssi
Irssi Irssi 0.8.14
Irssi Irssi 0.8.10
Irssi Irssi 0.8.8
Irssi Irssi 0.8.7
Irssi Irssi 0.8.12
Irssi Irssi 0.8.11
Irssi Irssi 0.8.3
Irssi Irssi 0.8.2
Irssi Irssi 0.8.13
Irssi Irssi 0.8.6
Irssi Irssi 0.8.1
Irssi Irssi 0.8.0
Irssi Irssi 0.8.4
Irssi Irssi 0.8.9
4.3
CVSSv2
CVE-2010-1156
core/nicklist.c in Irssi prior to 0.8.15 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via vectors related to an attempted fuzzy nick match at the instant that a victim leaves a channel.
Irssi Irssi 0.8.5
Irssi Irssi 0.8.8
Irssi Irssi 0.8.7
Irssi Irssi 0.8.13
Irssi Irssi 0.8.12
Irssi Irssi 0.8.11
Irssi Irssi 0.8.3
Irssi Irssi 0.8.2
Irssi Irssi 0.8.6
Irssi Irssi 0.8.10
Irssi Irssi 0.8.1
Irssi Irssi 0.8.0
Irssi Irssi 0.8.4
Irssi Irssi 0.8.9
Irssi Irssi
Irssi Irssi 0.8.14
5
CVSSv2
CVE-2003-1020
The format_send_to_gui function in formats.c for irssi prior to 0.8.9 allows remote IRC users to cause a denial of service (crash).
Irssi Irssi 0.8.7
Irssi Irssi 0.8.8
Irssi Irssi 0.8.5
Irssi Irssi 0.8.6
Irssi Irssi 0.8.4
Mandrakesoft Mandrake Linux 9.1
Mandrakesoft Mandrake Linux 9.2
5
CVSSv2
CVE-2006-0458
The DCC ACCEPT command handler in irssi prior to 0.8.9+0.8.10rc5-0ubuntu4.1 in Ubuntu Linux, and possibly other distributions, allows remote malicious users to cause a denial of service (application crash) via certain crafted arguments in a DCC command.
Irssi Irssi 0.8.10rc5
Irssi Irssi 0.8.9
9.3
CVSSv2
CVE-2007-4396
Multiple CRLF injection vulnerabilities in (1) ixmmsa.pl 0.3, (2) l33tmusic.pl 2.00, (3) mpg123.pl 0.01, (4) ogg123.pl 0.01, (5) xmms.pl 2.0, (6) xmms2.pl 1.1.3, and (7) xmmsinfo.pl 1.1.1.1 scripts for irssi prior to 0.8.11 allow user-assisted remote malicious users to execute ar...
Irssi Irssi
6.8
CVSSv2
CVE-2019-13045
Irssi prior to 1.0.8, 1.1.x prior to 1.1.3, and 1.2.x prior to 1.2.1, when SASL is enabled, has a use after free when sending SASL login to the server.
Irssi Irssi
7.5
CVSSv2
CVE-2017-10965
An issue exists in Irssi prior to 1.0.4. When receiving messages with invalid time stamps, Irssi would try to dereference a NULL pointer.
Irssi Irssi
7.5
CVSSv2
CVE-2017-10966
An issue exists in Irssi prior to 1.0.4. While updating the internal nick list, Irssi could incorrectly use the GHashTable interface and free the nick while updating it. This would then result in use-after-free conditions on each access of the hash table.
Irssi Irssi
5
CVSSv2
CVE-2017-15227
Irssi prior to 1.0.5, while waiting for the channel synchronisation, may incorrectly fail to remove destroyed channels from the query list, resulting in use-after-free conditions when updating the state later on.
Irssi Irssi
5
CVSSv2
CVE-2017-15228
Irssi prior to 1.0.5, when installing themes with unterminated colour formatting sequences, may access data beyond the end of the string.
Irssi Irssi
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924
CVE-2024-3400
overflow
CVE-2024-23528
CVE-2024-21338
CVE-2024-3818
CVE-2024-23535
NULL pointer dereference
elevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »