Vulnerabilities > Xchat

DATE	CVE	VULNERABILITY TITLE	RISK
2020-02-21	CVE-2012-0828	Out-of-bounds Write vulnerability in multiple products Heap-based buffer overflow in Xchat-WDK before 1499-4 (2012-01-18) xchat 2.8.6 on Maemo architecture could allow remote attackers to cause a denial of service (xchat client crash) or execute arbitrary code via a UTF-8 line from server containing characters outside of the Basic Multilingual Plane (BMP). network low complexity xchat-wdk xchat gnome CWE-787 critical	9.8
2016-04-21	CVE-2013-7449	Cryptographic Issues vulnerability in multiple products The ssl_do_connect function in common/server.c in HexChat before 2.10.2, XChat, and XChat-GNOME does not verify that the server hostname matches a domain name in the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate. network low complexity canonical xchat hexchat-project CWE-310	6.5
2004-01-05	CVE-2003-1000	NULL Pointer Dereference vulnerability in Xchat 2.0.6 xchat 2.0.6 allows remote attackers to cause a denial of service (crash) via a passive DCC request with an invalid ID number, which causes a null dereference. network low complexity xchat CWE-476	7.5

Vulnerabilities > Xchat {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Xchat"}]}