PT-2012-6152 · Weechat+1 · Weechat+1

Flashcode

Published

2012-11-19

Updated

2014-02-07

CVE-2012-5854

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions WeeChat versions 0.3.6 through 0.3.9

Description The issue is related to a heap-based buffer overflow that can be triggered by remote attackers sending crafted IRC colors that are not properly decoded, potentially leading to a denial of service or the execution of arbitrary code.

Recommendations For WeeChat versions 0.3.6 through 0.3.9, update to a version that contains a fix for this issue.

Fix

DoS

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2012-5854

OPENSUSE-SU-2013_0150-1

Affected Products

Suse

Weechat

PT-2012-6152 · Weechat+1 · Weechat+1

CVE-2012-5854

Weakness Enumeration

Related Identifiers

Affected Products

References · 22