CRITICAL🇬🇧 English

CVE-2012-1187

CVSS 9.8v3.1pub. 2019-10-29upd. 2024-11-21

Bitlbee does not drop extra group privileges correctly in unix.c

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Bitlbee

    APP
    Bitlbee
    3.0.4
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2016-10188CRITICAL9.8ten sam produkt

Use-after-free vulnerability in bitlbee-libpurple before 3.5 allows remote servers to cause a denial of servic...

CVE-2017-5668CRITICAL9.8ten sam produkt

bitlbee-libpurple before 3.5.1 allows remote attackers to cause a denial of service (NULL pointer dereference ...

CVE-2016-10189HIGH7.5ten sam produkt

BitlBee before 3.5 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) a...

CVE-2008-3920HIGH7.5ten sam produkt

Unspecified vulnerability in BitlBee before 1.2.2 allows remote attackers to "recreate" and "hijack" existing ...

CVE-2008-3969MEDIUM5.0ten sam produkt

Multiple unspecified vulnerabilities in BitlBee before 1.2.3 allow remote attackers to "overwrite" and "hijack...