CyberSec.Space Logo
Back to CVE Browser

CVE-2018-5208

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1510%
EPSS Percentile33.26th
PublishedJan 6, 2018
Last ModifiedNov 21, 2024

Vulnerability Description

In Irssi before 1.0.6, a calculation error in the completion code could cause a heap buffer overflow when completing certain strings.

Affected Platforms (CPE)

πŸ“¦
Irssi

Irssi

< 1.0.6
πŸ’»
Debian

Debian Linux

= 9.0

References & Advisories

πŸ”— https://irssi.org/security/irssi_sa_2018_01.txt
πŸ”— https://www.debian.org/security/2018/dsa-4162
πŸ”— https://irssi.org/security/irssi_sa_2018_01.txt
πŸ”— https://www.debian.org/security/2018/dsa-4162

Related Vulnerabilities

CVE-2002-184010.0

irssi IRC client 0.8.4, when downloaded after 14-March-2002, could contain a backdoor in the configuration file, which allows remo...

CVE-2017-109659.8

An issue was discovered in Irssi before 1.0.4. When receiving messages with invalid time stamps, Irssi would try to dereference a ...

CVE-2017-109669.8

An issue was discovered in Irssi before 1.0.4. While updating the internal nick list, Irssi could incorrectly use the GHashTable i...

CVE-2018-52069.8

When the channel topic is set without specifying a sender, Irssi before 1.0.6 may dereference a NULL pointer.