Computer Security
[EN] securityvulns.ru no-pyccku


BitlBee IM to IRC gateway multiple security vulnerabilities
Published:29.09.2008
Source:
SecurityVulns ID:9309
Type:remote
Threat Level:
5/10
Description:DoS, privilege escalation.
Affected:BITLBEE : Bitlbee 1.2
CVE:CVE-2008-3969 (Multiple unspecified vulnerabilities in BitlBee before 1.2.3 allow remote attackers to "overwrite" and "hijack" existing accounts via unknown vectors related to "inconsistent handling of the USTATUS_IDENTIFIED state." NOTE: this issue exists because of an incomplete fix for CVE-2008-3920.)
 CVE-2008-3920 (Unspecified vulnerability in BitlBee before 1.2.2 allows remote attackers to "recreate" and "hijack" existing accounts via unspecified vectors.)
Original documentdocumentGENTOO, [ GLSA 200809-14 ] BitlBee: Security bypass (29.09.2008)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod