CVE-2012-1187
- EPSS 0.43%
- Veröffentlicht 29.10.2019 19:15:13
- Zuletzt bearbeitet 21.11.2024 01:36:37
Bitlbee does not drop extra group privileges correctly in unix.c
CVE-2016-10188
- EPSS 0.95%
- Veröffentlicht 14.03.2017 14:59:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
Use-after-free vulnerability in bitlbee-libpurple before 3.5 allows remote servers to cause a denial of service (crash) or possibly execute arbitrary code by causing a file transfer connection to expire.
CVE-2016-10189
- EPSS 3.4%
- Veröffentlicht 14.03.2017 14:59:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
BitlBee before 3.5 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) and possibly execute arbitrary code via a file transfer request for a contact that is not in the contact list.
CVE-2017-5668
- EPSS 2.61%
- Veröffentlicht 14.03.2017 14:59:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
bitlbee-libpurple before 3.5.1 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) and possibly execute arbitrary code via a file transfer request for a contact that is not in the contact list. NOTE: this vulner...
- EPSS 0.81%
- Veröffentlicht 11.09.2008 01:13:47
- Zuletzt bearbeitet 09.04.2025 00:30:58
Multiple unspecified vulnerabilities in BitlBee before 1.2.3 allow remote attackers to "overwrite" and "hijack" existing accounts via unknown vectors related to "inconsistent handling of the USTATUS_IDENTIFIED state." NOTE: this issue exists because ...
CVE-2008-3920
- EPSS 1.45%
- Veröffentlicht 04.09.2008 18:41:00
- Zuletzt bearbeitet 09.04.2025 00:30:58
Unspecified vulnerability in BitlBee before 1.2.2 allows remote attackers to "recreate" and "hijack" existing accounts via unspecified vectors.