Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
irssi irssi vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2010-1155
Irssi prior to 0.8.15, when SSL is used, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) field or a Subject Alternative Name field of the X.509 certificate, which allows man-in-the-middle malicious users to spoof IRC servers v...
Irssi Irssi 0.8.5
Irssi Irssi
Irssi Irssi 0.8.14
Irssi Irssi 0.8.10
Irssi Irssi 0.8.8
Irssi Irssi 0.8.7
Irssi Irssi 0.8.12
Irssi Irssi 0.8.11
Irssi Irssi 0.8.3
Irssi Irssi 0.8.2
Irssi Irssi 0.8.13
Irssi Irssi 0.8.6
Irssi Irssi 0.8.1
Irssi Irssi 0.8.0
Irssi Irssi 0.8.4
Irssi Irssi 0.8.9
5
CVSSv2
CVE-2009-1959
Off-by-one error in the event_wallops function in fe-common/irc/fe-events.c in irssi 0.8.13 allows remote IRC servers to cause a denial of service (crash) via an empty command, which triggers a one-byte buffer under-read and a one-byte buffer underflow.
Irssi Irssi 0.8.13
1 EDB exploit
5
CVSSv2
CVE-2007-5226
irc_server.c in dircproxy 1.2.0 and previous versions allows remote malicious users to cause a denial of service (segmentation fault) via an ACTION command without a parameter, which triggers a NULL pointer dereference, as demonstrated using a blank /me message from irssi.
Dircproxy Dircproxy
9.3
CVSSv2
CVE-2007-4396
Multiple CRLF injection vulnerabilities in (1) ixmmsa.pl 0.3, (2) l33tmusic.pl 2.00, (3) mpg123.pl 0.01, (4) ogg123.pl 0.01, (5) xmms.pl 2.0, (6) xmms2.pl 1.1.3, and (7) xmmsinfo.pl 1.1.1.1 scripts for irssi prior to 0.8.11 allow user-assisted remote malicious users to execute ar...
Irssi Irssi
6.8
CVSSv2
CVE-2007-4397
Multiple CRLF injection vulnerabilities in (1) xmms-thing 1.0, (2) XMMS Remote Control Script 1.07, (3) Disrok 1.0, (4) a2x 0.0.1, (5) Another xmms-info script 1.0, (6) XChat-XMMS 0.8.1, and other unspecified scripts for XChat allow user-assisted remote malicious users to execute...
Ricardo Mesquita Ogg123 0.01
Simon Xmms2 1.1.3
Mikachu L33t Xmms Music Showing Script 2.00
Ricardo Mesquita Mpg123 0.01
Kristof Korwisi Ixmmsa 0.3
Tuomas Jormola Xmmsinfo 1.1.1.1
Irssi Irssi
6.8
CVSSv2
CVE-2007-4398
Multiple CRLF injection vulnerabilities in the (1) now-playing.rb and (2) xmms.pl 1.1 scripts for WeeChat allow user-assisted remote malicious users to execute arbitrary IRC commands via CRLF sequences in the name of the song in a .mp3 file.
Irssi Irssi
6.8
CVSSv2
CVE-2007-4399
CRLF injection vulnerability in the xmms.bx 1.0 script for BitchX allows user-assisted remote malicious users to execute arbitrary IRC commands via CRLF sequences in the name of the song in a .mp3 file.
Irssi Irssi 0.8.10rc5
10
CVSSv2
CVE-2007-1397
Multiple stack-based buffer overflows in the (1) ExtractRnick and (2) decrypt_topic_332 functions in FiSH allow remote malicious users to execute arbitrary code via long strings.
Fish Fish
2 EDB exploits
5
CVSSv2
CVE-2006-0458
The DCC ACCEPT command handler in irssi prior to 0.8.9+0.8.10rc5-0ubuntu4.1 in Ubuntu Linux, and possibly other distributions, allows remote malicious users to cause a denial of service (application crash) via certain crafted arguments in a DCC command.
Irssi Irssi 0.8.10rc5
Irssi Irssi 0.8.9
5
CVSSv2
CVE-2003-1020
The format_send_to_gui function in formats.c for irssi prior to 0.8.9 allows remote IRC users to cause a denial of service (crash).
Irssi Irssi 0.8.7
Irssi Irssi 0.8.8
Irssi Irssi 0.8.5
Irssi Irssi 0.8.6
Irssi Irssi 0.8.4
Mandrakesoft Mandrake Linux 9.1
Mandrakesoft Mandrake Linux 9.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »