CVE-2008-4748

Publication date 27 October 2008

Last updated 24 July 2024


Ubuntu priority

Format string vulnerability in the URI handler in KVirc 3.4.0, when set as the default application for processing IRC URIs, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via format string specifiers in the irc:// URI.

Read the notes from the security team

Status

Package Ubuntu Release Status
kvirc 9.10 karmic
Not affected
9.04 jaunty
Not affected
8.10 intrepid
Not affected
8.04 LTS hardy
Not affected
7.10 gutsy Ignored end of life, was needed
6.06 LTS dapper Ignored end of life

Notes


mdeslaur

Debian says it's a windows-specific vulnerability