CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
72.5%
Brian Carpenter discovered that Irssi incorrectly handled messages with
invalid time stamps. A malicious IRC server could use this issue to cause
Irssi to crash, resulting in a denial of service. (CVE-2017-10965)
Brian Carpenter discovered that Irssi incorrectly handled the internal nick
list. A malicious IRC server could use this issue to cause Irssi to crash,
resulting in a denial of service. (CVE-2017-10966)
Joseph Bisch discovered that Irssi incorrectly removed destroyed channels
from the query list. A malicious IRC server could use this issue to cause
Irssi to crash, resulting in a denial of service. (CVE-2017-15227)
Hanno BΓΆck discovered that Irssi incorrectly handled themes. If a user were
tricked into using a malicious theme, a attacker could use this issue to
cause Irssi to crash, resulting in a denial of service. (CVE-2017-15228)
Joseph Bisch discovered that Irssi incorrectly handled certain DCC CTCP
messages. A malicious IRC server could use this issue to cause Irssi to
crash, resulting in a denial of service. (CVE-2017-15721)
Joseph Bisch discovered that Irssi incorrectly handled certain channel IDs.
A malicious IRC server could use this issue to cause Irssi to crash,
resulting in a denial of service. (CVE-2017-15722)
Joseph Bisch discovered that Irssi incorrectly handled certain long nicks
or targets. A malicious IRC server could use this issue to cause Irssi to
crash, resulting in a denial of service. (CVE-2017-15723)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 17.10 | noarch | irssi | <Β 1.0.4-1ubuntu2.1 | UNKNOWN |
Ubuntu | 17.10 | noarch | irssi-dbgsym | <Β 1.0.4-1ubuntu2.1 | UNKNOWN |
Ubuntu | 17.10 | noarch | irssi-dev | <Β 1.0.4-1ubuntu2.1 | UNKNOWN |
Ubuntu | 17.04 | noarch | irssi | <Β 0.8.20-2ubuntu2.2 | UNKNOWN |
Ubuntu | 17.04 | noarch | irssi-dbgsym | <Β 0.8.20-2ubuntu2.2 | UNKNOWN |
Ubuntu | 17.04 | noarch | irssi-dev | <Β 0.8.20-2ubuntu2.2 | UNKNOWN |
Ubuntu | 16.04 | noarch | irssi | <Β 0.8.19-1ubuntu1.5 | UNKNOWN |
Ubuntu | 16.04 | noarch | irssi-dbg | <Β 0.8.19-1ubuntu1.5 | UNKNOWN |
Ubuntu | 16.04 | noarch | irssi-dbgsym | <Β 0.8.19-1ubuntu1.5 | UNKNOWN |
Ubuntu | 16.04 | noarch | irssi-dev | <Β 0.8.19-1ubuntu1.5 | UNKNOWN |
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
72.5%