Executive Summary

Informations
Name MDVSA-2010:079 First vendor Publication 2010-04-17
Vendor Mandriva Last vendor Modification 2010-04-17
Severity (Vendor) N/A Revision N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:P/I:P/A:P)
Cvss Base Score 6.8 Attack Range Network
Cvss Impact Score 6.4 Attack Complexity Medium
Cvss Expoit Score 8.6 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Multiple vulnerabilities has been found and corrected in irssi:

Irssi before 0.8.15, when SSL is used, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) field or a Subject Alternative Name field of the X.509 certificate, which allows man-in-the-middle attackers to spoof IRC servers via an arbitrary certificate (CVE-2010-1155).

core/nicklist.c in Irssi before 0.8.15 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors related to an attempted fuzzy nick match at the instant that a victim leaves a channel (CVE-2010-1156).

Additionally the updated packages disables the SSLv2 protocol and enables the SSLv3 and TLSv1 protocols for added security.

The updated packages have been patched to correct these issues.

Original Source

Url : http://www.mandriva.com/security/advisories?name=MDVSA-2010:079

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-20 Improper Input Validation

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:12565
 
Oval ID: oval:org.mitre.oval:def:12565
Title: USN-929-1 -- irssi vulnerabilities
Description: It was discovered that irssi did not perform certificate host validation when using SSL connections. An attacker could exploit this to perform a man in the middle attack to view sensitive information or alter encrypted communications. Aurelien Delaitre discovered that irssi could be made to dereference a NULL pointer when a user left the channel. A remote attacker could cause a denial of service via application crash. This update also adds SSLv3 and TLSv1 support, while disabling the old, insecure SSLv2 protocol.
Family: unix Class: patch
Reference(s): USN-929-1
CVE-2010-1155
CVE-2010-1156
 Version: 5
Platform(s): Ubuntu 8.04
Ubuntu 8.10
Ubuntu 9.10
Ubuntu 9.04
 Product(s): irssi
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:13254
 
Oval ID: oval:org.mitre.oval:def:13254
Title: USN-929-2 -- irssi regression
Description: USN-929-1 fixed vulnerabilities in irssi. The upstream changes introduced a regression when using irssi with SSL and an IRC proxy. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered that irssi did not perform certificate host validation when using SSL connections. An attacker could exploit this to perform a man in the middle attack to view sensitive information or alter encrypted communications. Aurelien Delaitre discovered that irssi could be made to dereference a NULL pointer when a user left the channel. A remote attacker could cause a denial of service via application crash. This update also adds SSLv3 and TLSv1 support, while disabling the old, insecure SSLv2 protocol.
Family: unix Class: patch
Reference(s): USN-929-2
CVE-2010-1155
CVE-2010-1156
 Version: 5
Platform(s): Ubuntu 8.04
Ubuntu 8.10
Ubuntu 9.10
Ubuntu 9.04
 Product(s): irssi
Definition Synopsis:

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 25

OpenVAS Exploits

Date Description
2010-05-17 Name : Fedora Update for irssi FEDORA-2010-6629
File : nvt/gb_fedora_2010_6629_irssi_fc12.nasl
2010-04-29 Name : Ubuntu Update for irssi regression USN-929-2
File : nvt/gb_ubuntu_USN_929_2.nasl
2010-04-21 Name : FreeBSD Ports: irssi
File : nvt/freebsd_irssi.nasl
2010-04-19 Name : Mandriva Update for irssi MDVSA-2010:079 (irssi)
File : nvt/gb_mandriva_MDVSA_2010_079.nasl
2010-04-16 Name : Ubuntu Update for irssi vulnerabilities USN-929-1
File : nvt/gb_ubuntu_USN_929_1.nasl
2010-03-02 Name : Mandriva Update for msec MDVA-2010:079 (msec)
File : nvt/gb_mandriva_MDVA_2010_079.nasl
0000-00-00 Name : Slackware Advisory SSA:2010-116-01 irssi
File : nvt/esoft_slk_ssa_2010_116_01.nasl

Open Source Vulnerability Database (OSVDB)

Id Description
63889 irssi core/nicklist.c Fuzzy Nick Match NULL Dereference Remote DoS
63888 irssi X.509 Certificate Common Name (CN) Field Handling SSL MiTM Weakness

Nessus® Vulnerability Scanner

Date Description
2010-07-30 Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2010-079.nasl - Type : ACT_GATHER_INFO
2010-07-01 Name : The remote Fedora host is missing a security update.
File : fedora_2010-6629.nasl - Type : ACT_GATHER_INFO
2010-04-30 Name : The remote openSUSE host is missing a security update.
File : suse_11_0_irssi-100427.nasl - Type : ACT_GATHER_INFO
2010-04-30 Name : The remote openSUSE host is missing a security update.
File : suse_11_1_irssi-100427.nasl - Type : ACT_GATHER_INFO
2010-04-30 Name : The remote openSUSE host is missing a security update.
File : suse_11_2_irssi-100427.nasl - Type : ACT_GATHER_INFO
2010-04-26 Name : The remote Slackware host is missing a security update.
File : Slackware_SSA_2010-116-01.nasl - Type : ACT_GATHER_INFO
2010-04-21 Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-929-2.nasl - Type : ACT_GATHER_INFO
2010-04-20 Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_3b7967f149e811df83fb0015587e2cc1.nasl - Type : ACT_GATHER_INFO
2010-04-16 Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-929-1.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.
0
Date Informations
2014-02-17 11:41:25
  • Multiple Updates