Vulnerabilities > CVE-2006-6584 - Denial-Of-Service vulnerability in Italkplus 0.80

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

italkplus

critical

NVD

Published: 2006-12-15

Updated: 2017-07-29

Summary

Multiple buffer overflows in italkplus (Italk+) before 0.92.1 allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via unspecified vectors. Exploit attempts may result in an application denial-of-service condition. This vulnerability is addressed in the following product update: italkplus (Italk+) before 0.92.1

Vulnerable Configurations

Part	Description	Count
Application	Italkplus Italkplus Italkplus 0.80 Italkplus Italkplus *	2

References

http://italk.sourceforge.net/italk-sa-1.txt
http://secunia.com/advisories/23374
http://www.vupen.com/english/advisories/2006/5014
https://exchange.xforce.ibmcloud.com/vulnerabilities/30900