ID CVE-2006-0458
Summary The DCC ACCEPT command handler in irssi before 0.8.9+0.8.10rc5-0ubuntu4.1 in Ubuntu Linux, and possibly other distributions, allows remote attackers to cause a denial of service (application crash) via certain crafted arguments in a DCC command.
References
Vulnerable Configurations
  • Irssi 0.8.9
    cpe:2.3:a:irssi:irssi:0.8.9
  • cpe:2.3:a:irssi:irssi:0.8.10rc5
    cpe:2.3:a:irssi:irssi:0.8.10rc5
CVSS
Base: 5.0 (as of 07-03-2006 - 09:44)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
nessus via4
NASL family Ubuntu Local Security Checks
NASL id UBUNTU_USN-259-1.NASL
description A Denial of Service vulnerability was discoverd in irssi. The DCC ACCEPT command handler did not sufficiently verify the remotely specified arguments. A remote attacker could exploit this to crash irssi by sending a specially crafted DCC commands. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
last seen 2019-02-21
modified 2018-08-15
plugin id 21067
published 2006-03-13
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=21067
title Ubuntu 5.10 : irssi-text vulnerability (USN-259-1)
refmap via4
bid 16913
secunia 19090
ubuntu USN-259-1
xf irssi-dcc-accept-dos(25147)
Last major update 05-09-2008 - 16:59
Published 06-03-2006 - 18:02
Last modified 03-10-2018 - 17:35
Back to Top