Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xchat xchat vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2012-0828
Heap-based buffer overflow in Xchat-WDK prior to 1499-4 (2012-01-18) xchat 2.8.6 on Maemo architecture could allow remote malicious users to cause a denial of service (xchat client crash) or execute arbitrary code via a UTF-8 line from server containing characters outside of the ...
Gnome Gtk 2.10.4
Gnome Gtk 2.14.7
Gnome Gtk 2.18.9
Gnome Gtk 2.24.7
Xchat Xchat
Xchat-wdk Xchat-wdk
7.5
CVSSv3
CVE-2003-1000
xchat 2.0.6 allows remote malicious users to cause a denial of service (crash) via a passive DCC request with an invalid ID number, which causes a null dereference.
Xchat Xchat 2.0.6
6.5
CVSSv3
CVE-2013-7449
The ssl_do_connect function in common/server.c in HexChat prior to 2.10.2, XChat, and XChat-GNOME does not verify that the server hostname matches a domain name in the X.509 certificate, which allows man-in-the-middle malicious users to spoof SSL servers via an arbitrary valid ce...
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
Xchat Xchat -
Xchat Xchat Gnome -
Hexchat Project Hexchat
NA
CVE-2011-5129
Heap-based buffer overflow in XChat 2.8.9 and previous versions allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a long response string.
Xchat Xchat 2.8.7
Xchat Xchat 2.8.6
Xchat Xchat 2.8.1
Xchat Xchat 2.8.0
Xchat Xchat 1.3.12
Xchat Xchat 1.3.13
Xchat Xchat 2.8.8
Xchat Xchat 2.8.5
Xchat Xchat 1.4.3
Xchat Xchat 1.5.6
Xchat Xchat 1.3.11
Xchat Xchat 1.2.1
Xchat Xchat 1.8.9
Xchat Xchat 1.8.4
Xchat Xchat 1.8.1
Xchat Xchat 2.0.6
Xchat Xchat 1.9.8
Xchat Xchat 1.9.9
Xchat Xchat
Xchat Xchat 2.8.4
Xchat Xchat 2.8.3
Xchat Xchat 1.4.1
1 EDB exploit
NA
CVE-2009-0315
Untrusted search path vulnerability in the Python module in xchat allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to a vulnerability in the PySys_SetArgv function (CVE-2008-5983).
Xchat Xchat
NA
CVE-2008-2841
Argument injection vulnerability in XChat 2.8.7b and previous versions on Windows, when Internet Explorer is used, allows remote malicious users to execute arbitrary commands via the --command parameter in an ircs:// URI.
Microsoft Internet Explorer
Xchat Xchat
1 EDB exploit
NA
CVE-2007-4397
Multiple CRLF injection vulnerabilities in (1) xmms-thing 1.0, (2) XMMS Remote Control Script 1.07, (3) Disrok 1.0, (4) a2x 0.0.1, (5) Another xmms-info script 1.0, (6) XChat-XMMS 0.8.1, and other unspecified scripts for XChat allow user-assisted remote malicious users to execute...
Ricardo Mesquita Ogg123 0.01
Simon Xmms2 1.1.3
Mikachu L33t Xmms Music Showing Script 2.00
Ricardo Mesquita Mpg123 0.01
Kristof Korwisi Ixmmsa 0.3
Tuomas Jormola Xmmsinfo 1.1.1.1
Irssi Irssi
NA
CVE-2006-4455
Unspecified vulnerability in Xchat 2.6.7 and previous versions allows remote malicious users to cause a denial of service (crash) via unspecified vectors involving the PRIVMSG command. NOTE: the vendor has disputed this vulnerability, stating that it does not affect 2.6.7 "o...
Xchat Xchat
2 EDB exploits
NA
CVE-2004-0409
Stack-based buffer overflow in the Socks-5 proxy code for XChat 1.8.0 to 2.0.8, with socks5 traversal enabled, allows remote malicious users to execute arbitrary code.
Xchat Xchat 1.8.4
Xchat Xchat 1.8.5
Xchat Xchat 1.8.6
Xchat Xchat 1.9.3
Xchat Xchat 1.9.4
Xchat Xchat 2.0.1
Xchat Xchat 2.0.2
Xchat Xchat 1.8.0
Xchat Xchat 1.8.1
Xchat Xchat 1.8.9
Xchat Xchat 1.9.0
Xchat Xchat 1.9.7
Xchat Xchat 1.9.8
Xchat Xchat 2.0.5
Xchat Xchat 2.0.6
Xchat Xchat 1.8.7
Xchat Xchat 1.8.8
Xchat Xchat 1.9.5
Xchat Xchat 1.9.6
Xchat Xchat 2.0.3
Xchat Xchat 2.0.4
Xchat Xchat 1.8.2
1 EDB exploit
NA
CVE-2002-0382
XChat IRC client allows remote malicious users to execute arbitrary commands via a /dns command on a host whose DNS reverse lookup contains shell metacharacters.
Xchat Xchat
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »