2 matches found
CVE-2009-3051
CVE-2009-3051 describes multiple format-string vulnerabilities in the SILC Toolkit and SILC Client. The flaws reside in lib/silcclient/client_entry.c, allowing remote attackers to execute arbitrary code via format string specifiers embedded in nicknames, tied to functions silc_client_add_client, ...
CVE-2009-3163
CVE-2009-3163 is a vulnerability in the SILC Toolkit and SILC Client. Reports describe multiple format-string vulnerabilities in lib/silcclient/command.c that allow remote code execution via crafted channel names, affecting SILC Toolkit versions before 1.1.10 and SILC Client up to 1.1.8. The issu...