irssi vulnerability

2009-07-1300:00:00

ubuntu.com

6.3 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.058 Low

EPSS

Percentile

93.3%

JSON

Releases

Ubuntu 9.04
Ubuntu 8.10
Ubuntu 8.04
Ubuntu 6.06

Packages

irssi -

Details

It was discovered that irssi did not properly check the length of strings
when processing WALLOPS messages. If a user connected to an IRC network
where an attacker had IRC operator privileges, a remote attacker could
cause a denial of service.

OSVersionArchitecturePackageVersionFilename
Ubuntu9.04noarchirssi< 0.8.12-6ubuntu1.1UNKNOWN
Ubuntu9.04noarchirssi< dev-0.8.12-6ubuntu1.1UNKNOWN
Ubuntu8.10noarchirssi< 0.8.12-4ubuntu2.1UNKNOWN
Ubuntu8.10noarchirssi< dev-0.8.12-4ubuntu2.1UNKNOWN
Ubuntu8.04noarchirssi< 0.8.12-3ubuntu3.1UNKNOWN
Ubuntu8.04noarchirssi-dev< 0.8.12-3ubuntu3.1UNKNOWN
Ubuntu6.06noarchirssi< 0.8.10-1ubuntu1.1UNKNOWN
Ubuntu6.06noarchirssi-dev< 0.8.10-1ubuntu1.1UNKNOWN
Ubuntu6.06noarchirssi-text< 0.8.10-1ubuntu1.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Ubuntu	9.04	noarch	irssi	< 0.8.12-6ubuntu1.1	UNKNOWN
Ubuntu	9.04	noarch	irssi	< dev-0.8.12-6ubuntu1.1	UNKNOWN
Ubuntu	8.10	noarch	irssi	< 0.8.12-4ubuntu2.1	UNKNOWN
Ubuntu	8.10	noarch	irssi	< dev-0.8.12-4ubuntu2.1	UNKNOWN
Ubuntu	8.04	noarch	irssi	< 0.8.12-3ubuntu3.1	UNKNOWN
Ubuntu	8.04	noarch	irssi-dev	< 0.8.12-3ubuntu3.1	UNKNOWN
Ubuntu	6.06	noarch	irssi	< 0.8.10-1ubuntu1.1	UNKNOWN
Ubuntu	6.06	noarch	irssi-dev	< 0.8.10-1ubuntu1.1	UNKNOWN
Ubuntu	6.06	noarch	irssi-text	< 0.8.10-1ubuntu1.1	UNKNOWN