The CtcpParser::packedReply method in core/ctcpparser.cpp in Quassel prior to 0.7.3 allows remote malicious users to cause a denial of service (crash) via a crafted Client-To-Client Protocol (CTCP) request, as demonstrated in the wild in September 2011.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
quassel-irc quassel 0.7.0 |
||
quassel-irc quassel 0.3.0 |
||
quassel-irc quassel 0.5.1 |
||
quassel-irc quassel 0.5.2 |
||
quassel-irc quassel 0.4.1 |
||
quassel-irc quassel 0.4.2 |
||
quassel-irc quassel 0.7.1 |
||
quassel-irc quassel |
||
quassel-irc quassel 0.4.3 |
||
quassel-irc quassel 0.5.0 |
||
quassel-irc quassel 0.3.1 |
||
quassel-irc quassel 0.4.0 |
||
quassel-irc quassel 0.6.0 |
||
quassel-irc quassel 0.6.1 |