79 matches found
CVE-2016-2233
Stack-based buffer overflow in the inboundcapls function in common/inbound.c in HexChat 2.10.2 allows remote IRC servers to cause a denial of service crash via a large number of options in a CAP LS message...
UBUNTU-CVE-2016-2087
Directory traversal vulnerability in the client in HexChat 2.11.0 allows remote IRC servers to read or modify arbitrary files via a .. dot dot in the server name...
CVE-2016-2233
Stack-based buffer overflow in the inboundcapls function in common/inbound.c in HexChat 2.10.2 allows remote IRC servers to cause a denial of service crash via a large number of options in a CAP LS message...
CVE-2016-2087
Directory traversal vulnerability in the client in HexChat 2.11.0 allows remote IRC servers to read or modify arbitrary files via a .. dot dot in the server name...
CVE-2016-2233
CVE-2016-2233 affects HexChat 2.10.2, with a stack-based buffer overflow in inbound_cap_ls (common/inbound.c) that allows remote IRC servers to crash the client by sending many CAP LS options. This is documented across multiple feeds (NVD, OSV, Debian tracker, CNVD, CVE lists) confirming the vuln...
CVE-2016-2233
Stack-based buffer overflow in the inboundcapls function in common/inbound.c in HexChat 2.10.2 allows remote IRC servers to cause a denial of service crash via a large number of options in a CAP LS message...
CVE-2016-2087
HexChat 2.11.0 contains a directory traversal vulnerability in the client that allows a remote IRC server to read or modify arbitrary files via a ... in the server name. Multiple connected advisories confirm affected software and fixed/mitigation status: OSV and Debian advisories indicate the iss...
CVE-2016-2087
Directory traversal vulnerability in the client in HexChat 2.11.0 allows remote IRC servers to read or modify arbitrary files via a .. dot dot in the server name...
HexChat-GNOME Man-in-the-Middle Attack Vulnerability
HexChat formerly known as XChat-WDK, XChat and XChat-GNOME are all IRC a form of instant chat over the Internet communication programs. Versions of XChat,XChat-GNOME prior to HexChat 2.10.2 suffer from a man-in-the-middle attack vulnerability, which allows a man-in-the-middle attacker to spoof SS...
UBUNTU-CVE-2013-7449
The ssldoconnect function in common/server.c in HexChat before 2.10.2, XChat, and XChat-GNOME does not verify that the server hostname matches a domain name in the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate...
CVE-2013-7449
The ssldoconnect function in common/server.c in HexChat before 2.10.2, XChat, and XChat-GNOME does not verify that the server hostname matches a domain name in the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate...
CVE-2013-7449
The ssldoconnect function in common/server.c in HexChat before 2.10.2, XChat, and XChat-GNOME does not verify that the server hostname matches a domain name in the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate...
CVE-2013-7449
The ssldoconnect function in common/server.c in HexChat before 2.10.2, XChat, and XChat-GNOME does not verify that the server hostname matches a domain name in the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate...
CVE-2013-7449
The ssldoconnect function in common/server.c in HexChat before 2.10.2, XChat, and XChat-GNOME does not verify that the server hostname matches a domain name in the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate...
CVE-2013-7449
The ssldoconnect function in common/server.c in HexChat before 2.10.2, XChat, and XChat-GNOME does not verify that the server hostname matches a domain name in the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate...
Hexchat IRC Client缓冲区溢出漏洞
No description provided by source...
Hexchat IRC Client Stack Buffer Overflow Vulnerability
Hexchat formerly known as XChat-WDK is a cross-platform IRC Instant Chat over the Internet communications software. Hexchat IRC Client is one of the IRC client products based on XChat. Hexchat IRC Client version 2.11.0 suffers from a stack buffer overflow vulnerability in the 'inboundcapls'...
Hexchat IRC Client Directory Traversal Vulnerability
Hexchat formerly known as XChat-WDK is a cross-platform IRC Instant Chat over the Internet communications software. Hexchat IRC Client is one of the IRC client products based on XChat. Hexchat IRC Client version 2.11.0 has a directory traversal vulnerability in the 'logcreatepathname' function in...
Hexchat IRC Client 2.11.0 CAP LS Handling Buffer Overflow
!/usr/bin/python Meta information Exploit Title: Hexchat IRC client - CAP LS Handling Stack Buffer Overflow Date: 2016-02-07 Exploit Author: PizzaHatHacker Vendor Homepage: https://hexchat.github.io/index.html Software Link: https://hexchat.github.io/downloads.html Version: 2.11.0 Tested on:...
Hexchat IRC Client 2.11.0 Directory Traversal
!/usr/bin/python Meta information Exploit Title: Hexchat IRC client - Server name log directory traversal Date: 2016-01-26 Exploit Author: PizzaHatHacker Vendor Homepage: https://hexchat.github.io/index.html Software Link: https://hexchat.github.io/downloads.html Version: 2.11.0 Tested on: HexCha...