Summary
This host has SILC Client installed and is prone to Format String vulnerability.
Impact
Attackers can exploit this iisue to execute arbitrary code in the context of the affected application and compromise the system.
Impact Level: Application/System
Solution
Apply the patch or upgrade to SILC Toolkit 1.1.10.
For updates refer to http://silcnet.org/
*****
NOTE: Please ignore this warning if the patch is already applied.
*****
Insight
Multiple format string errors occur in 'lib/silcclient/command.c' while processing format string specifiers in the channel name field.
Affected
SILC Client 1.1.8 and prior
SILC Toolkit prior to 1.1.10.
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2009-3163 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Adobe Air Multiple Vulnerabilities June-2012 (Windows)
- Adobe Acrobat Out-of-bounds Vulnerability Feb15 (Mac OS X)
- Adobe AIR Multiple Vulnerabilities -01 Feb13 (Mac OS X)
- Adobe Flash Player Arbitrary Code Execution Vulnerability - 01 Feb14 (Windows)
- Adobe Acrobat Multiple Vulnerabilities-01 Dec14 (Mac OS X)