Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
irssi vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-1156
core/nicklist.c in Irssi prior to 0.8.15 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via vectors related to an attempted fuzzy nick match at the instant that a victim leaves a channel.
Irssi Irssi 0.8.5
Irssi Irssi 0.8.8
Irssi Irssi 0.8.7
Irssi Irssi 0.8.13
Irssi Irssi 0.8.12
Irssi Irssi 0.8.11
Irssi Irssi 0.8.3
Irssi Irssi 0.8.2
Irssi Irssi 0.8.6
Irssi Irssi 0.8.10
Irssi Irssi 0.8.1
Irssi Irssi 0.8.0
Irssi Irssi 0.8.4
Irssi Irssi 0.8.9
Irssi Irssi
Irssi Irssi 0.8.14
NA
CVE-2010-1155
Irssi prior to 0.8.15, when SSL is used, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) field or a Subject Alternative Name field of the X.509 certificate, which allows man-in-the-middle malicious users to spoof IRC servers v...
Irssi Irssi 0.8.5
Irssi Irssi
Irssi Irssi 0.8.14
Irssi Irssi 0.8.10
Irssi Irssi 0.8.8
Irssi Irssi 0.8.7
Irssi Irssi 0.8.12
Irssi Irssi 0.8.11
Irssi Irssi 0.8.3
Irssi Irssi 0.8.2
Irssi Irssi 0.8.13
Irssi Irssi 0.8.6
Irssi Irssi 0.8.1
Irssi Irssi 0.8.0
Irssi Irssi 0.8.4
Irssi Irssi 0.8.9
NA
CVE-2003-1020
The format_send_to_gui function in formats.c for irssi prior to 0.8.9 allows remote IRC users to cause a denial of service (crash).
Irssi Irssi 0.8.7
Irssi Irssi 0.8.8
Irssi Irssi 0.8.5
Irssi Irssi 0.8.6
Irssi Irssi 0.8.4
Mandrakesoft Mandrake Linux 9.1
Mandrakesoft Mandrake Linux 9.2
NA
CVE-2006-0458
The DCC ACCEPT command handler in irssi prior to 0.8.9+0.8.10rc5-0ubuntu4.1 in Ubuntu Linux, and possibly other distributions, allows remote malicious users to cause a denial of service (application crash) via certain crafted arguments in a DCC command.
Irssi Irssi 0.8.10rc5
Irssi Irssi 0.8.9
9.8
CVSSv3
CVE-2017-7191
The netjoin processing in Irssi 1.x prior to 1.0.2 allows malicious users to cause a denial of service (use-after-free) and possibly execute arbitrary code via unspecified vectors.
Irssi Irssi
NA
CVE-2007-4396
Multiple CRLF injection vulnerabilities in (1) ixmmsa.pl 0.3, (2) l33tmusic.pl 2.00, (3) mpg123.pl 0.01, (4) ogg123.pl 0.01, (5) xmms.pl 2.0, (6) xmms2.pl 1.1.3, and (7) xmmsinfo.pl 1.1.1.1 scripts for irssi prior to 0.8.11 allow user-assisted remote malicious users to execute ar...
Irssi Irssi
8.1
CVSSv3
CVE-2019-13045
Irssi prior to 1.0.8, 1.1.x prior to 1.1.3, and 1.2.x prior to 1.2.1, when SASL is enabled, has a use after free when sending SASL login to the server.
Irssi Irssi
NA
CVE-2007-4398
Multiple CRLF injection vulnerabilities in the (1) now-playing.rb and (2) xmms.pl 1.1 scripts for WeeChat allow user-assisted remote malicious users to execute arbitrary IRC commands via CRLF sequences in the name of the song in a .mp3 file.
Irssi Irssi
5.3
CVSSv3
CVE-2023-29132
Irssi 1.3.x and 1.4.x prior to 1.4.4 has a use-after-free because of use of a stale special collector reference. This occurs when printing of a non-formatted line is concurrent with printing of a formatted line.
Irssi Irssi
7.5
CVSSv3
CVE-2017-5195
Irssi 0.8.17 prior to 0.8.21 allows remote malicious users to cause a denial of service (out-of-bounds read and crash) via a crafted ANSI x8 color code.
Irssi Irssi
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
hardcoded
arbitrary code
CVE-2024-2404
CVE-2024-21111
CVE-2024-28627
CVE-2024-4073
information disclosure
CVE-2024-32780
CVE-2024-4040
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »