Multiple format string vulnerabilities in the DCC functionality in KVIrc 3.4 and 4.0 have unspecified impact and remote attack vectors.
CVSS Vector
AV:N/AC:L/Au:N/C:C/I:C/A:CKvirc
APPKvirc3.4.04.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References
Related vulnerabilities
CVE-2010-2452HIGH9.3ten sam produkt
Directory traversal vulnerability in the DCC functionality in KVIrc 3.4 and 4.0 allows remote attackers to ove...
CVE-2008-7070HIGH9.3ten sam produkt
Argument injection vulnerability in the URI handler in KVIrc 3.4.2 Shiny allows remote attackers to execute ar...
CVE-2008-4748HIGH7.6ten sam produkt
Format string vulnerability in the URI handler in KVirc 3.4.0, when set as the default application for process...
CVE-2010-2785MEDIUM6.5ten sam produkt
The IRC Protocol component in KVIrc 3.x and 4.x before r4693 does not properly handle \ (backslash) characters...
CVE-2007-2951HIGH9.3ten sam vendor
The parseIrcUrl function in src/kvirc/kernel/kvi_ircurl.cpp in KVIrc 3.2.0 allows user-assisted remote attacke...