Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
irssi irssi vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2017-10966
An issue exists in Irssi prior to 1.0.4. While updating the internal nick list, Irssi could incorrectly use the GHashTable interface and free the nick while updating it. This would then result in use-after-free conditions on each access of the hash table.
Irssi Irssi
7.5
CVSSv3
CVE-2017-5196
Irssi 0.8.18 prior to 0.8.21 allows remote malicious users to cause a denial of service (out-of-bounds read and crash) via vectors involving strings that are not UTF8.
Irssi Irssi
NA
CVE-2007-4398
Multiple CRLF injection vulnerabilities in the (1) now-playing.rb and (2) xmms.pl 1.1 scripts for WeeChat allow user-assisted remote malicious users to execute arbitrary IRC commands via CRLF sequences in the name of the song in a .mp3 file.
Irssi Irssi
7.5
CVSSv3
CVE-2017-15227
Irssi prior to 1.0.5, while waiting for the channel synchronisation, may incorrectly fail to remove destroyed channels from the query list, resulting in use-after-free conditions when updating the state later on.
Irssi Irssi
7.5
CVSSv3
CVE-2017-15228
Irssi prior to 1.0.5, when installing themes with unterminated colour formatting sequences, may access data beyond the end of the string.
Irssi Irssi
NA
CVE-2002-1840
irssi IRC client 0.8.4, when downloaded after 14-March-2002, could contain a backdoor in the configuration file, which allows remote malicious users to access the system.
Irssi Irssi 0.8.4
NA
CVE-2007-4399
CRLF injection vulnerability in the xmms.bx 1.0 script for BitchX allows user-assisted remote malicious users to execute arbitrary IRC commands via CRLF sequences in the name of the song in a .mp3 file.
Irssi Irssi 0.8.10rc5
NA
CVE-2002-0983
IRC client irssi in irssi-text prior to 0.8.4 allows remote malicious users to cause a denial of service (crash) via an IRC channel that has a long topic followed by a certain string, possibly triggering a buffer overflow.
Irssi Irssi 0.8.4
NA
CVE-2009-1959
Off-by-one error in the event_wallops function in fe-common/irc/fe-events.c in irssi 0.8.13 allows remote IRC servers to cause a denial of service (crash) via an empty command, which triggers a one-byte buffer under-read and a one-byte buffer underflow.
Irssi Irssi 0.8.13
1 EDB exploit
7.5
CVSSv3
CVE-2018-7050
An issue exists in Irssi prior to 1.0.7 and 1.1.x prior to 1.1.1. A NULL pointer dereference occurs for an "empty" nick.
Irssi Irssi
Irssi Irssi 1.1.0
Debian Debian Linux 9.0
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 17.10
Canonical Ubuntu Linux 16.04
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-36920
buffer overflow
CVE-2024-36913
CVE-2024-5497
CVE-2024-23917
CVE-2024-4956
server-side request forgery
CVE-2024-35468
SSTI
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »