#VU7401 Use-after-free in Irssi - CVE-2017-10966


| Updated: 2017-07-11

Vulnerability identifier: #VU7401

Vulnerability risk: High

CVSSv4.0: 8.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2017-10966

CWE-ID: CWE-416

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Irssi
Client/Desktop applications / Messaging software

Vendor: Irssi.org

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to use-after-free error when incorrectly using GHashTable interface while updating internal nick list. A remote unauthenticated attacker can create a specially crafted nick name and crash the affected server or execute arbitrary code.

Successful exploitation of the vulnerability may result in remote code execution.

Mitigation
Update to version 1.0.4.

Vulnerable software versions

Irssi: 1.0.0 - 1.0.3

External links
https://irssi.org/security/irssi_sa_2017_07.txt

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Ubuntu update for Irssi
Arch Linux update for irssi
Slackware Linux update for irssi
Multiple vulnerabilities in Irssi
Fedora 25 update for irssi
Fedora 26 update for irssi
Multiple vulnerabilities in PostgreSQL