漏洞信息详情
IRSSI超长畸形主题服务拒绝漏洞
- CNNVD编号:CNNVD-200209-059
- 危害等级: 低危
- CVE编号: CVE-2002-0983
- 漏洞类型: 缓冲区溢出
- 发布时间: 2002-09-24
- 威胁类型: 远程
- 更新时间: 2005-10-20
- 厂 商: irssi
- 漏洞来源: .');">Credited to Ripe <>
漏洞简介
irssi-text 0.8.4之前版本的IRC client irssi存在漏洞。远程攻击者借助有紧跟着某些字符串的超长主题的IRC通道导致服务拒绝(崩溃),该漏洞可能触发缓冲区溢出。
漏洞公告
This issue does not appear to be present in versions earlier than 0.8.4. It has also been reported that only the text version of the client is affected, and irssi-gnome and irssi-gtk are unaffected. FreeBSD has released a Security Notice FreeBSD-SN-02:05. Users of FreeBSD systems are strongly urged to upgrade their ports tree to fix various reported issues. Further information can be found in the referenced Security Notice. Fixes are available: irssi irssi 0.8.4
- Debian irssi-text_0.8.4-3.1_alpha.deb http://security.debian.org/pool/updates/main/i/irssi-text/irssi-text_0 .8.4-3.1_alpha.deb
- Debian irssi-text_0.8.4-3.1_arm.deb http://security.debian.org/pool/updates/main/i/irssi-text/irssi-text_0 .8.4-3.1_arm.deb
- Debian irssi-text_0.8.4-3.1_hppa.deb http://security.debian.org/pool/updates/main/i/irssi-text/irssi-text_0 .8.4-3.1_hppa.deb
- Debian irssi-text_0.8.4-3.1_i386.deb http://security.debian.org/pool/updates/main/i/irssi-text/irssi-text_0 .8.4-3.1_i386.deb
- Debian irssi-text_0.8.4-3.1_ia64.deb http://security.debian.org/pool/updates/main/i/irssi-text/irssi-text_0 .8.4-3.1_ia64.deb
- Debian irssi-text_0.8.4-3.1_m68k.deb http://security.debian.org/pool/updates/main/i/irssi-text/irssi-text_0 .8.4-3.1_m68k.deb
- Debian irssi-text_0.8.4-3.1_mips.deb http://security.debian.org/pool/updates/main/i/irssi-text/irssi-text_0 .8.4-3.1_mips.deb
- Debian irssi-text_0.8.4-3.1_mipsel.deb http://security.debian.org/pool/updates/main/i/irssi-text/irssi-text_0 .8.4-3.1_mipsel.deb
- Debian irssi-text_0.8.4-3.1_powerpc.deb http://security.debian.org/pool/updates/main/i/irssi-text/irssi-text_0 .8.4-3.1_powerpc.deb
- Debian irssi-text_0.8.4-3.1_s390.deb http://security.debian.org/pool/updates/main/i/irssi-text/irssi-text_0 .8.4-3.1_s390.deb
- Debian irssi-text_0.8.4-3.1_sparc.deb http://security.debian.org/pool/updates/main/i/irssi-text/irssi-text_0 .8.4-3.1_sparc.deb
参考网址
来源: BID 名称: 5055 链接:http://www.securityfocus.com/bid/5055 来源: DEBIAN 名称: DSA-157 链接:http://www.debian.org/security/2002/dsa-157 来源: XF 名称: irssi-long-topic-dos(9395) 链接:http://xforce.iss.net/xforce/xfdb/9395 来源: FREEBSD 名称: FreeBSD-SN-02:05 链接:ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SN-02%3A05.asc
受影响实体
- Irssi Irssi:0.8.4
补丁
暂无
![weinxin](http://zone.ci/zone_ci_images/zone.ci.png)
评论