Vulnerabilities > Xchat > Xchat > 1.8.6
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-02-21 | CVE-2012-0828 | Out-of-bounds Write vulnerability in multiple products Heap-based buffer overflow in Xchat-WDK before 1499-4 (2012-01-18) xchat 2.8.6 on Maemo architecture could allow remote attackers to cause a denial of service (xchat client crash) or execute arbitrary code via a UTF-8 line from server containing characters outside of the Basic Multilingual Plane (BMP). | 7.5 |
2012-08-30 | CVE-2011-5129 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Xchat Heap-based buffer overflow in XChat 2.8.9 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long response string. | 5.0 |
2008-06-24 | CVE-2008-2841 | Code Injection vulnerability in multiple products Argument injection vulnerability in XChat 2.8.7b and earlier on Windows, when Internet Explorer is used, allows remote attackers to execute arbitrary commands via the --command parameter in an ircs:// URI. | 6.8 |
2004-06-01 | CVE-2004-0409 | Unspecified vulnerability in Xchat Stack-based buffer overflow in the Socks-5 proxy code for XChat 1.8.0 to 2.0.8, with socks5 traversal enabled, allows remote attackers to execute arbitrary code. | 7.5 |
2002-06-25 | CVE-2002-0382 | Unspecified vulnerability in Xchat XChat IRC client allows remote attackers to execute arbitrary commands via a /dns command on a host whose DNS reverse lookup contains shell metacharacters. | 7.5 |