Unspecified vulnerability in BitlBee before 1.2.2 allows remote attackers to "recreate" and "hijack" existing accounts via unspecified vectors.
oryginał ENCVSS Vector
AV:N/AC:L/Au:N/C:P/I:P/A:PBitlbee
APPBitlbee0.710.720.730.740.800.810.820.830.840.850.900.910.920.930.99+ 9 więcej
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Referencje
Powiązane podatności
CVE-2012-1187CRITICAL9.8ten sam produkt
Bitlbee does not drop extra group privileges correctly in unix.c
CVE-2016-10188CRITICAL9.8ten sam produkt
Use-after-free vulnerability in bitlbee-libpurple before 3.5 allows remote servers to cause a denial of servic...
CVE-2017-5668CRITICAL9.8ten sam produkt
bitlbee-libpurple before 3.5.1 allows remote attackers to cause a denial of service (NULL pointer dereference ...
CVE-2016-10189HIGH7.5ten sam produkt
BitlBee before 3.5 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) a...
CVE-2008-3969MEDIUM5.0ten sam produkt
Multiple unspecified vulnerabilities in BitlBee before 1.2.3 allow remote attackers to "overwrite" and "hijack...