Debian Security Advisory DSA 157-1 (irssi-text)

Published: 2008-01-17 21:24:46
CVE Author: NIST National Vulnerability Database (NVD)

CVSS Base Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

Recommendations:
https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20157-1

Technical Details:
The IRC client irssi is vulnerable to a denial of service condition. The problem occurs when a user attempts to join a channel that has an overly long topic description. When a certain string is appended to the topic, irssi will crash. This problem has been fixed in version 0.8.4-3.1 for the current stable stable distribution (woody) and in version 0.8.5-2 for the unstable distribution (sid). The old stable distribution (potato) is not affected, since the corresponding portions of code are not present. The same applies to irssi-gnome and irssi-gtk, which don't seem to be affected as well. We recommend that you upgrade your irssi-text Linux Distribution Package.

Summary:
The remote host is missing an update to irssi-text announced via advisory DSA 157-1.

Detection Type:
Linux Distribution Package

Solution Type:
Vendor Patch

NIST (National Institute of Standards and Technology) NVD (National Vulnerability Database)

https://nvd.nist.gov/vuln/detail/CVE-2002-0983

SecurityFocus Bugtraq ID:

https://www.securityfocus.com/bid/5055

Search
Severity
Medium
CVSS Score
5.0

You never have to pay for a vulnerability scanning and management software again.

Tired of paying a subscription 'per asset' or 'per IP'? Well you can officially cancel your current subscription. Mageni provides a free, open source and enterprise-ready vulnerability scanning and management platform which helps you to find, prioritize, remediate and manage your vulnerabilities. It is free and always will be.