Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
quassel quassel core vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-5657
CRLF injection vulnerability in Quassel Core prior to 0.3.0.3 allows remote malicious users to spoof IRC messages as other users via a crafted CTCP message.
Quassel Quassel Core 0.3.0
Quassel Quassel Core 0.2.0
Quassel Quassel Core 0.1.0
Quassel Quassel Core
Quassel Quassel Core 0.3.0.1
NA
CVE-2011-3354
The CtcpParser::packedReply method in core/ctcpparser.cpp in Quassel prior to 0.7.3 allows remote malicious users to cause a denial of service (crash) via a crafted Client-To-Client Protocol (CTCP) request, as demonstrated in the wild in September 2011.
Quassel-irc Quassel 0.7.0
Quassel-irc Quassel 0.3.0
Quassel-irc Quassel 0.5.1
Quassel-irc Quassel 0.5.2
Quassel-irc Quassel 0.4.1
Quassel-irc Quassel 0.4.2
Quassel-irc Quassel 0.7.1
Quassel-irc Quassel
Quassel-irc Quassel 0.4.3
Quassel-irc Quassel 0.5.0
Quassel-irc Quassel 0.3.1
Quassel-irc Quassel 0.4.0
Quassel-irc Quassel 0.6.0
Quassel-irc Quassel 0.6.1
NA
CVE-2013-6404
Quassel core (server daemon) in Quassel IRC prior to 0.9.2 does not properly verify the user ID when accessing user backlogs, which allows remote authenticated users to read other users' backlogs via the bufferid in (1) 16/select_buffer_by_id.sql, (2) 16/select_buffer_by_id....
Quassel-irc Quassel Irc
Quassel-irc Quassel Irc 0.9.0
7.5
CVSSv3
CVE-2018-1000179
A NULL Pointer Dereference of CWE-476 exists in quassel version 0.12.4 in the quasselcore void CoreAuthHandler::handle(const Login &msg) coreauthhandler.cpp line 235 that allows an malicious user to cause a denial of service.
Quassel-irc Quassel 0.12.4
Debian Debian Linux 8.0
Debian Debian Linux 9.0
7.5
CVSSv3
CVE-2015-8547
The CoreUserInputHandler::doMode function in core/coreuserinputhandler.cpp in Quassel 0.10.0 allows remote malicious users to cause a denial of service (application crash) via the "/op *" command in a query.
Quassel-irc Quassel
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Opensuse Leap 42.1
7.5
CVSSv3
CVE-2016-4414
The onReadyRead function in core/coreauthhandler.cpp in Quassel prior to 0.12.4 allows remote malicious users to cause a denial of service (NULL pointer dereference and crash) via invalid handshake data.
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Quassel-irc Quassel
Fedoraproject Fedora 22
Fedoraproject Fedora 24
Fedoraproject Fedora 23
NA
CVE-2014-8483
The blowfishECB function in core/cipher.cpp in Quassel IRC 0.10.0 allows remote malicious users to cause a denial of service (out-of-bounds read) via a malformed string.
Canonical Ubuntu Linux 12.04
Debian Debian Linux 7.0
Quassel-irc Quassel Irc 0.10.0
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Opensuse Opensuse 12.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started