Vulnerabilities > CVE-2003-1000 - NULL Pointer Dereference vulnerability in Xchat 2.0.6

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

xchat

CWE-476

NVD

Published: 2004-01-05

Updated: 2024-01-09

Summary

xchat 2.0.6 allows remote attackers to cause a denial of service (crash) via a passive DCC request with an invalid ID number, which causes a null dereference.

Vulnerable Configurations

Part	Description	Count
Application	Xchat Xchat Xchat 2.0.6	1

Common Weakness Enumeration (CWE)

CWE-476 - NULL Pointer Dereference

References

http://mail.nl.linux.org/xchat-announce/2003-12/msg00000.html
http://marc.info/?l=bugtraq&m=107152093419276&w=2