X-Chat 2.0.6 - Remote Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9217/info It has been reported that X-Chat may be prone to a remote denial of service vulnerability that may allow an attacker to crash the client by sending a malicious 'DDC SEND' request. X-Chat version 2.0.6 running on...

X-Chat 1.x CTCP Ping Arbitrary Remote IRC Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/3830/info X-Chat is a graphical client for IRC. It requires the GTK+ toolkit, and is available for many Linux and Unix operating systems. If a CTCP ping request includes escaped newline characters and additional IRC...

X-Chat 1.2/1.3/1.4/1.5 Command Execution Via URLs Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1601/info A vulnerability exists in versions 1.4.2 and earlier of the X-Chat IRC client. By supplying commands enclosed in backticks in URL's sent to X-Chat, it is possible to execute arbitrary commands should the X-Chat...

Fedora Update for xchat-ruby FEDORA-2012-1325

Check for the Version of xchat-ruby OpenVAS Vulnerability Test Fedora Update for xchat-ruby FEDORA-2012-1325 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

[SECURITY] Fedora 15 Update: xchat-ruby-1.2-11.fc15

For those of us that prefer the Ruby programming language above all others, the XChat-Ruby Plugin now allows X-Chat plugins to be written in Ruby, in addition to the other supported scripting interfaces. This means that, for the first time, you can use a purely object-oriented language in which t...

Mandriva Linux Security Advisory : xchat (MDVSA-2009:059-1)

Python has a variable called sys.path that contains all paths where Python loads modules by using import scripting procedure. A wrong handling of that variable enables local attackers to execute arbitrary code via Python scripting in the current X-Chat working directory CVE-2009-0315. This update...

XChat PySys_SetArgv函数命令执行漏洞

BUGTRAQ ID: 33444 CVECAN ID: CVE-2009-0315 X-Chat是一款免费开放源代码的IRC客户端。 xchat的Python模块中使用了不可信任的搜索路径，本地用户可以在当前工作目录中放置恶意的Python文件并利用PySysSetArgv函数调用中的安全漏洞（CVE-2008-5983）执行任意代码。 X-Chat X-Chat 2.8.7b X-Chat X-Chat 2.8.6 厂商补丁： X-Chat ------ 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本：...

Denial of service vulnerability in X-Chat for Windows from Silverex.org

Critical Security research group found a denial of service vulnerability in X-Chat for Windows from Silverex.org. Vulnerable versions: 2.4.5-1 and prior. Vulnerable code: define MAXLINE 300 for x = 2; wordx0 != '0'; ++x strncatinfo, wordx, MAXLINE; strncatinfo, " ", MAXLINE; Proof of concept: Pla...

Low: Red Hat Security Advisory: xchat security update

An updated xchat package that fixes a stack buffer overflow in the SOCKSv5 proxy code. X-Chat is a graphical IRC chat client for the X Window System. A stack buffer overflow has been fixed in the SOCKSv5 proxy code. An attacker could create a malicious SOCKSv5 proxy server in such a way that X-Ch...

X-Chat 2.0.6 - Remote Denial of Service

X-Chat 2.0.6 - Remote Denial of Service source: https://www.securityfocus.com/bid/9217/info It has been reported that X-Chat may be prone to a remote denial of service vulnerability that may allow an attacker to crash the client by sending a malicious 'DDC SEND' request. X-Chat version 2.0.6...

X-Chat 2.0.6 - Remote Denial of Service

source: https://www.securityfocus.com/bid/9217/info It has been reported that X-Chat may be prone to a remote denial of service vulnerability that may allow an attacker to crash the client by sending a malicious 'DDC SEND' request. X-Chat version 2.0.6 running on a Linux platform has been reporte...

X-Chat 1.x - CTCP Ping Remote IRC Command Execution

source: https://www.securityfocus.com/bid/3830/info X-Chat is a graphical client for IRC. It requires the GTK+ toolkit, and is available for many Linux and Unix operating systems. If a CTCP ping request includes escaped newline characters and additional IRC commands, these commands may be execute...

X-Chat 1.x - CTCP Ping Remote IRC Command Execution

X-Chat 1.x - CTCP Ping Remote IRC Command Execution source: https://www.securityfocus.com/bid/3830/info X-Chat is a graphical client for IRC. It requires the GTK+ toolkit, and is available for many Linux and Unix operating systems. If a CTCP ping request includes escaped newline characters and...

Linux news 13.11.00

Linux Kernel pre-patch 2.4.0 test11-pre3 Вышел третий пререлиз одинадцатого тестового ядра Linux - Linux Kernel 2.4.0. Подробее: ftp://ftp.funet.fi/pub/linux/kernel/testing 2.4 будет в декабре Линус обмолвился в интервью немецкому журналу, что ядро 2.4 точно будет в декабре. Что в принципе...

[SECURITY] New version of xchat released (update)

------------------------------------------------------------------------ Debian Security Advisory [email protected] http://www.debian.org/security/ Wichert Akkerman August 30, 2000 - ------------------------------------------------------------------------ Package : xchat Problem type : remote...

[SECURITY] New version of xchat released

------------------------------------------------------------------------ Debian Security Advisory [email protected] http://www.debian.org/security/ Wichert Akkerman August 30, 2000 - ------------------------------------------------------------------------ Package : xchat Problem type : remote...

X-Chat 1.21.31.41.5 - Command Execution via URLs

X-Chat 1.21.31.41.5 - Command Execution via URLs source: https://www.securityfocus.com/bid/1601/info A vulnerability exists in versions 1.4.2 and earlier of the X-Chat IRC client. By supplying commands enclosed in backticks in URL's sent to X-Chat, it is possible to execute arbitrary commands...

X-Chat 1.2/1.3/1.4/1.5 - Command Execution via URLs

source: https://www.securityfocus.com/bid/1601/info A vulnerability exists in versions 1.4.2 and earlier of the X-Chat IRC client. By supplying commands enclosed in backticks in URL's sent to X-Chat, it is possible to execute arbitrary commands should the X-Chat user decide to view the link by...