SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

[Forgot Password]

Paid content will be excluded from the download.

Download | Alert*

CVE

CVE-2010-1156

Date: (C)2010-04-16 (M)2023-12-22

core/nicklist.c in Irssi before 0.8.15 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors related to an attempted fuzzy nick match at the instant that a victim leaves a channel.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 4.3
Exploit Score: 8.6
Impact Score: 2.9

CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: NONE
Integrity: NONE
Availability: PARTIAL

Reference:

SECTRACK-1023845

FEDORA-2010-6629

SSA:2010-116-01

SUSE-SR:2010:011

http://marc.info/?l=oss-security&m=127098845125270&w=2

http://marc.info/?l=oss-security&m=127111071631857&w=2

http://marc.info/?l=oss-security&m=127119240204394&w=2

http://irssi.org/news

http://irssi.org/news/ChangeLog

http://svn.irssi.org/cgi-bin/viewvc.cgi/irssi/trunk/src/core/nicklist.c?root=irssi&r1=4922&r2=5126

irssi-unspecified-dos(57791)

cpe:/a:irssi:irssi:0.8.0
cpe:/a:irssi:irssi:0.8.1
cpe:/a:irssi:irssi:0.8.4
cpe:/a:irssi:irssi:0.8.13
...

oval:org.secpod.oval:def:700086
oval:org.secpod.oval:def:300342

© SecPod Technologies