Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2008-0672

The process_chat_input function in TinTin++ 1.97.9 and WinTin++ 1.97.9 allows remote attackers to cause a denial of service (application crash) via a YES message without a newline character, which triggers a NULL dereference.

Related bugs and status

CVE-2008-0672 (Candidate) is related to these bugs:

Bug #208618: [FFe] tintin++ 1.97.9

Summary				In	Importance	Status
	208618	[FFe] tintin++ 1.97.9		tintin++ (Ubuntu)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: http://aluigi.altervis...
BID: 27660
SECUNIA: 28833
SREASON: 3632
VUPEN: ADV-2008-0449
GENTOO: GLSA-201111-07
BUGTRAQ: 20080206 Chat vulnerab...