Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4748

Overview

Vulnerability Score 7.6 7.6
CVE Id CVE-2008-4748
Last Modified 07 Mar 2011 10:13:13
Published 27 Oct 2008 04:00:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2008-4748

Summary

Format string vulnerability in the URI handler in KVirc 3.4.0, when set as the default application for processing IRC URIs, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via format string specifiers in the irc:// URI.

Vulnerable Systems

Application

  • Kvirc 3.4.0


References

XF - kvirc-irc-format-string(46114)

VUPEN - ADV-2008-2926

BID - 31912

MILW0RM - 6832

SREASON - 4508

SECUNIA - 32410


Last Updated: 27 May 2016 10:48:36