SUSE CVE-2007-1327

The SILCSERVERCMDFUNC function in apps/silcd/command.c in silc-server 1.0.2 allows remote attackers to cause a denial of service NULL dereference and daemon crash via a request without a cipher algorithm and an invalid HMAC algorithm...

SUSE CVE-2008-1429

Secure Internet Live Conferencing SILC Server before 1.1.1 allows remote attackers to cause a denial of service daemon crash via a NEWCLIENT packet without a nickname...

Silc Server 1.0.2 New Channel Remote Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/22846/info SILC Server is prone to a denial-of-service vulnerability because the application fails to handle exceptional conditions. An attacker can exploit this issue to crash the affected server, effectively denying...

Gentoo Security Advisory GLSA 200703-12 (silc-server)

The remote host is missing updates announced in advisory GLSA 200703-12. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Gentoo Security Advisory GLSA 200804-27 (silc-toolkit silc-client silc-server)

The remote host is missing updates announced in advisory GLSA 200804-27. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Gentoo Security Advisory GLSA 200703-12 (silc-server)

The remote host is missing updates announced in advisory GLSA 200703-12. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Gentoo Security Advisory GLSA 200804-27 (silc-toolkit silc-client silc-server)

The remote host is missing updates announced in advisory GLSA 200804-27. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

FreeBSD Ports: silc-irssi-client, silc-client

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

GLSA-200804-27 : SILC: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200804-27 SILC: Multiple vulnerabilities Nathan G. Grennan reported a boundary error in SILC Toolkit within the silcfingerprint function in the file lib/silcutil/silcutil.c when passing overly long data, resulting in a stack-based...

CVE-2008-1552

The CVE-2008-1552 issue affects the SILC Toolkit family: the silc_pkcs1_decode function in silccrypt (silcpkcs1.c) enables remote code execution via a crafted PKCS#1 message. Affected products/versions are SILC Toolkit before 1.1.7, SILC Client before 1.1.4, and SILC Server before 1.1.2, indicati...

SILC server and client buffer overflow

Buffer overflow on PKCS 1 certificates parsing...

silc -- pkcs_decode buffer overflow

Core Security Technologies reports: A remote buffer overflow vulnerability found in a library used by both the SILC server and client to process packets containing cryptographic material may allow an un-authenticated client to executearbitrary code on the server with the privileges of the user...

CVE-2008-1429

Secure Internet Live Conferencing SILC Server before 1.1.1 allows remote attackers to cause a denial of service daemon crash via a NEWCLIENT packet without a nickname...

CVE-2008-1429

Secure Internet Live Conferencing SILC Server before 1.1.1 allows remote attackers to cause a denial of service daemon crash via a NEWCLIENT packet without a nickname...

Code injection

Secure Internet Live Conferencing SILC Server before 1.1.1 allows remote attackers to cause a denial of service daemon crash via a NEWCLIENT packet without a nickname...

CVE-2008-1429

CVE-2008-1429 affects SILC Server prior to 1.1.1 and is triggered by handling of NEW_CLIENT packets that do not contain a nickname, leading to daemon crash (Denial of Service). Public reports confirm impact as a remote DoS and recommend upgrading the SILC Server to a fixed version (1.1.1+; e.g., ...

CVE-2008-1429

Secure Internet Live Conferencing SILC Server before 1.1.1 allows remote attackers to cause a denial of service daemon crash via a NEWCLIENT packet without a nickname...

GLSA-200703-12 : SILC Server: Denial of Service

The remote host is affected by the vulnerability described in GLSA-200703-12 SILC Server: Denial of Service Frank Benkstein discovered a possible NULL pointer dereference in apps/silcd/command.c if a new channel is created without specifying a valid hmac or cipher algorithm name. Impact : A remot...

SILC Server: Denial of service

Background SILC Server is a server for the Secure Internet Live Conferencing SILC protocol. Description Frank Benkstein discovered a possible NULL pointer dereference in apps/silcd/command.c if a new channel is created without specifying a valid hmac or cipher algorithm name. Impact A remote...

CVE-2007-1327

The SILCSERVERCMDFUNC function in apps/silcd/command.c in silc-server 1.0.2 allows remote attackers to cause a denial of service NULL dereference and daemon crash via a request without a cipher algorithm and an invalid HMAC algorithm...