xchat 2.0.6 allows remote attackers to cause a denial of service (crash) via a passive DCC request with an invalid ID number, which causes a null dereference.
References
Link | Resource |
---|---|
http://mail.nl.linux.org/xchat-announce/2003-12/msg00000.html | Broken Link Patch Vendor Advisory |
http://marc.info/?l=bugtraq&m=107152093419276&w=2 | Mailing List |
Configurations
History
09 Jan 2024, 03:26
Type | Values Removed | Values Added |
---|---|---|
References | (BUGTRAQ) http://marc.info/?l=bugtraq&m=107152093419276&w=2 - Mailing List | |
References | (CONFIRM) http://mail.nl.linux.org/xchat-announce/2003-12/msg00000.html - Broken Link, Patch, Vendor Advisory | |
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 7.5 |
CWE | CWE-476 |
Information
Published : 2004-01-05 05:00
Updated : 2024-02-28 10:24
NVD link : CVE-2003-1000
Mitre link : CVE-2003-1000
CVE.ORG link : CVE-2003-1000
JSON object : View
Products Affected
xchat
- xchat
CWE
CWE-476
NULL Pointer Dereference