CVE-2003-1000

xchat 2.0.6 allows remote attackers to cause a denial of service (crash) via a passive DCC request with an invalid ID number, which causes a null dereference.
References
Configurations

Configuration 1 (hide)

cpe:2.3:a:xchat:xchat:2.0.6:*:*:*:*:*:*:*

History

09 Jan 2024, 03:26

Type Values Removed Values Added
References (BUGTRAQ) http://marc.info/?l=bugtraq&m=107152093419276&w=2 - (BUGTRAQ) http://marc.info/?l=bugtraq&m=107152093419276&w=2 - Mailing List
References (CONFIRM) http://mail.nl.linux.org/xchat-announce/2003-12/msg00000.html - Patch, Vendor Advisory (CONFIRM) http://mail.nl.linux.org/xchat-announce/2003-12/msg00000.html - Broken Link, Patch, Vendor Advisory
CVSS v2 : 5.0
v3 : unknown
v2 : 5.0
v3 : 7.5
CWE NVD-CWE-Other CWE-476

Information

Published : 2004-01-05 05:00

Updated : 2024-02-28 10:24


NVD link : CVE-2003-1000

Mitre link : CVE-2003-1000

CVE.ORG link : CVE-2003-1000


JSON object : View

Products Affected

xchat

  • xchat
CWE
CWE-476

NULL Pointer Dereference