CVE-2006-6811

Publication date 29 December 2006

Last updated 17 July 2025

Ubuntu priority

Medium

Why this priority?

Cvss 3 Severity Score

6.5 · Medium

Score breakdown

Description

KsIRC 1.3.12 allows remote attackers to cause a denial of service (crash) via a long PRIVMSG string when connecting to an Internet Relay Chat (IRC) server, which causes an assertion failure and results in a NULL pointer dereference. NOTE: this issue was originally reported as a buffer overflow.

Status

Package Ubuntu Release Status
kdenetwork 7.04 feisty
Fixed 3.5.6-0ubuntu9
6.10 edgy
Fixed 3.5.5-0ubuntu1.1
6.06 LTS dapper
Fixed 3.5.2-0ubuntu6.3

Severity score breakdown

CVSS version: CVSS v3.0

Base score 6.5 · Medium

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

References

Related Ubuntu Security Notices (USN)

    • USN-409-1
    • ksirc vulnerability
    • 16 January 2007

Other references

Access our resources on patching vulnerabilities