3 matches found
CVE-2008-1227
CVE-2008-1227 concerns a stack-based buffer overflow in the silc_fingerprint() function of SILC Toolkit 1.1.5 and earlier. The vulnerability occurs via long input data, enabling a remote attacker to cause a crash or potentially execute arbitrary code. Public references across multiple advisories ...
CVE-2008-1552
The CVE-2008-1552 issue affects the SILC Toolkit family: the silc_pkcs1_decode function in silccrypt (silcpkcs1.c) enables remote code execution via a crafted PKCS#1 message. Affected products/versions are SILC Toolkit before 1.1.7, SILC Client before 1.1.4, and SILC Server before 1.1.2, indicati...
CVE-2007-3728
CVE-2007-3728 affects SILC Client and SILC Toolkit via a buffer overflow in lib/silcclient/client_notify.c, exploitable by remote attackers sending NICK_CHANGE notifications. The issue exists in versions before 1.1.2 and can cause a denial of service. Mitigation: upgrade to SILC Toolkit 1.1.2 or ...