Known Vulnerabilities for products from Xchat
Listed below are 12 of the newest known vulnerabilities associated with the vendor "Xchat".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2013-7449 | The ssl_do_connect function in common/server.c in HexChat before 2.10.2, XChat, and XChat-GNOME does not verify that the serv... | 6.5 - MEDIUM | 2016-04-21 | 2021-07-20 |
| CVE-2012-0828 | Heap-based buffer overflow in Xchat-WDK before 1499-4 (2012-01-18) xchat 2.8.6 on Maemo architecture could allow remote attac... | 9.8 - CRITICAL | 2020-02-21 | 2020-03-05 |
| CVE-2011-5129 | Heap-based buffer overflow in XChat 2.8.9 and earlier allows remote attackers to cause a denial of service (crash) and possib... | 5 - MEDIUM | 2012-08-30 | 2013-02-14 |
| CVE-2009-0315 | Untrusted search path vulnerability in the Python module in xchat allows local users to execute arbitrary code via a Trojan h... | 6.9 - MEDIUM | 2009-01-28 | 2009-03-06 |
| CVE-2008-2841 | Argument injection vulnerability in XChat 2.8.7b and earlier on Windows, when Internet Explorer is used, allows remote attack... | 6.8 - MEDIUM | 2008-06-24 | 2021-07-23 |
| CVE-2006-4455 | ** DISPUTED ** Unspecified vulnerability in Xchat 2.6.7 and earlier allows remote attackers to cause a denial of service (cr... | 5 - MEDIUM | 2006-08-30 | 2023-11-07 |
| CVE-2004-0409 | Stack-based buffer overflow in the Socks-5 proxy code for XChat 1.8.0 to 2.0.8, with socks5 traversal enabled, allows remote ... | 7.5 - HIGH | 2004-06-01 | 2017-10-11 |
| CVE-2003-1000 | xchat 2.0.6 allows remote attackers to cause a denial of service (crash) via a passive DCC request with an invalid ID number,... | 7.5 - HIGH | 2004-01-05 | 2024-01-09 |
| CVE-2002-0382 | XChat IRC client allows remote attackers to execute arbitrary commands via a /dns command on a host whose DNS reverse lookup ... | 7.5 - HIGH | 2002-06-25 | 2016-10-18 |
| CVE-2002-0006 | XChat 1.8.7 and earlier, including default configurations of 1.4.2 and 1.4.3, allows remote attackers to execute arbitrary IR... | 7.5 - HIGH | 2002-06-25 | 2017-10-10 |
| CVE-2001-0792 | Format string vulnerability in XChat 1.2.x allows remote attackers to execute arbitrary code via a malformed nickname. | 7.5 - HIGH | 2001-10-18 | 2017-10-10 |
| CVE-2000-0787 | IRC Xchat client versions 1.4.2 and earlier allows remote attackers to execute arbitrary commands by encoding shell metachara... | 7.5 - HIGH | 2000-10-20 | 2008-09-10 |
Known software with vulnerabilities from Xchat
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Xchat | Xchat | 1.2.1 |