Silc : Security Vulnerabilities, CVEs, (Denial of service)

CVE-2008-1429

Secure Internet Live Conferencing (SILC) Server before 1.1.1 allows remote attackers to cause a denial of service (daemon crash) via a NEW_CLIENT packet without a nickname.
Max CVSS
7.8
EPSS Score
4.37%
Published
2008-03-20
Updated
2017-08-08

CVE-2008-1227

Stack-based buffer overflow in the silc_fingerprint function in lib/silcutil/silcutil.c in Secure Internet Live Conferencing (SILC) Toolkit 1.1.5, and unspecified earlier versions, allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via long input data. NOTE: some of these details are obtained from third party information.
Max CVSS
7.5
EPSS Score
16.27%
Published
2008-03-10
Updated
2017-08-08

CVE-2007-3728

Buffer overflow in lib/silcclient/client_notify.c of SILC Client and SILC Toolkit before 1.1.2 allows remote attackers to cause a denial of service via "NICK_CHANGE" notifications.
Max CVSS
5.0
EPSS Score
4.95%
Published
2007-07-12
Updated
2017-07-29

CVE-2007-1327

The SILC_SERVER_CMD_FUNC function in apps/silcd/command.c in silc-server 1.0.2 allows remote attackers to cause a denial of service (NULL dereference and daemon crash) via a request without a cipher algorithm and an invalid HMAC algorithm.
Max CVSS
7.8
EPSS Score
5.90%
Published
2007-03-07
Updated
2017-07-29
4 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close