19 matches found
EUVD-2002-0006
Malware in sbrugna...
EUVD-2007-4394
Malware in sbrugna...
EUVD-2007-2472
Malware in sbrugna...
X-Chat 1.x CTCP Ping Arbitrary Remote IRC Command Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/3830/info X-Chat is a graphical client for IRC. It requires the GTK+ toolkit, and is available for many Linux and Unix operating systems. If a CTCP ping request includes escaped newline characters and additional IRC...
Quassel IRC client command injection
A CTCP ping where the value contains a CTCP quoted newline '020' + 'n' will let the Quassel core reply with a message containing an unquoted newline 'n'. The IRC server interprets this as a command separator...
CVE-2007-4411
ircu 2.10.12.05 and earlier allows remote attackers to discover the hidden IP address of arbitrary +x users via a series of /silence commands with 1 CIDR mask arguments or 2 certain other arguments that represent groups of IP addresses, then monitoring CTCP ping replies...
Design/Logic Flaw
ircu 2.10.12.05 and earlier allows remote attackers to discover the hidden IP address of arbitrary +x users via a series of /silence commands with 1 CIDR mask arguments or 2 certain other arguments that represent groups of IP addresses, then monitoring CTCP ping replies...
CVE-2007-4411
ircu 2.10.12.05 and earlier allows remote attackers to discover the hidden IP address of arbitrary +x users via a series of /silence commands with 1 CIDR mask arguments or 2 certain other arguments that represent groups of IP addresses, then monitoring CTCP ping replies...
DEBIAN-CVE-2007-4411
ircu 2.10.12.05 and earlier allows remote attackers to discover the hidden IP address of arbitrary +x users via a series of /silence commands with 1 CIDR mask arguments or 2 certain other arguments that represent groups of IP addresses, then monitoring CTCP ping replies...
CVE-2007-4411
ircu 2.10.12.05 and earlier allows remote attackers to discover the hidden IP address of arbitrary +x users via a series of /silence commands with 1 CIDR mask arguments or 2 certain other arguments that represent groups of IP addresses, then monitoring CTCP ping replies...
CVE-2007-4411
ircu 2.10.12.05 and earlier allows remote attackers to discover the hidden IP address of arbitrary +x users via a series of /silence commands with 1 CIDR mask arguments or 2 certain other arguments that represent groups of IP addresses, then monitoring CTCP ping replies...
Design/Logic Flaw
Cerulean Studios Trillian Pro before 3.1.5.1 allows remote attackers to obtain potentially sensitive information via long CTCP PING messages that contain UTF-8 characters, which generates a malformed response that is not truncated by a newline, which can cause portions of a server message to be...
CVE-2007-2479
Cerulean Studios Trillian Pro before 3.1.5.1 allows remote attackers to obtain potentially sensitive information via long CTCP PING messages that contain UTF-8 characters, which generates a malformed response that is not truncated by a newline, which can cause portions of a server message to be...
CVE-2007-2479
Cerulean Studios Trillian Pro before 3.1.5.1 allows remote attackers to obtain potentially sensitive information via long CTCP PING messages that contain UTF-8 characters, which generates a malformed response that is not truncated by a newline, which can cause portions of a server message to be...
iDefense Security Advisory 04.30.07: Cerulean Studios Trillian Multiple IRC Vulnerabilities
Cerulean Studios Trillian Multiple IRC Vulnerabilities iDefense Security Advisory 04.30.07 http://labs.idefense.com/intelligence/vulnerabilities/ Apr 30, 2007 I. BACKGROUND Cerulean Studios Trillian is a multi-protocol chat application that supports IRC, ICQ, AIM and MSN protocols. More informati...
Mandrake Linux Security Advisory : xchat (MDKSA-2002:006)
zen-parse discovered a problem in versions 1.4.2 and 1.4.3 of xchat that could allow a malicious user to send commands to the IRC server they are on which would take advantage of the CTCP PING reply handler in xchat. This could be used for denial of service, channel takeovers, and other similar...
CVE-2002-0006
Vulnerability summary (CVE-2002-0006) : XChat versions 1.8.7 and earlier (including default configurations of 1.4.2 and 1.4.3) are vulnerable. A remote attacker can execute arbitrary IRC commands as another client by sending specially encoded characters in a PRIVMSG that calls CTCP PING, which ca...
X-Chat 1.x - CTCP Ping Remote IRC Command Execution
X-Chat 1.x - CTCP Ping Remote IRC Command Execution source: https://www.securityfocus.com/bid/3830/info X-Chat is a graphical client for IRC. It requires the GTK+ toolkit, and is available for many Linux and Unix operating systems. If a CTCP ping request includes escaped newline characters and...
X-Chat 1.x - CTCP Ping Remote IRC Command Execution
source: https://www.securityfocus.com/bid/3830/info X-Chat is a graphical client for IRC. It requires the GTK+ toolkit, and is available for many Linux and Unix operating systems. If a CTCP ping request includes escaped newline characters and additional IRC commands, these commands may be execute...