CVE-2000-0787 | SynScan

Vulnerability Database

289,784

Total vulnerabilities in the database

CVE-2000-0787

IRC Xchat client versions 1.4.2 and earlier allows remote attackers to execute arbitrary commands by encoding shell metacharacters into a URL which XChat uses to launch a web browser.

Published: Oct 20, 2000
Updated: Apr 13, 2023
CVE: CVE-2000-0787
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
xchat / xchat	1.2.1	1.2.1.x
xchat / xchat	1.3.10	1.3.10.x
xchat / xchat	1.4	1.4.x
xchat / xchat	1.5.xdev	1.5.xdev.x
xchat / xchat	1.5.6	1.5.6.x
xchat / xchat	1.3.13	1.3.13.x
xchat / xchat	1.3.9	1.3.9.x
xchat / xchat	1.3.12	1.3.12.x
xchat / xchat	1.4.1	1.4.1.x
xchat / xchat	1.4.2	1.4.2.x
xchat / xchat	1.3.11	1.3.11.x