What is the severity of CVE-2009-3163?

CVE-2009-3163 is classified as a high severity vulnerability, as it allows remote attackers to execute arbitrary code.

How do I fix CVE-2009-3163?

To fix CVE-2009-3163, update to SILC Toolkit version 1.1.10 or later and SILC Client version 1.1.9 or later.

What software versions are affected by CVE-2009-3163?

CVE-2009-3163 affects SILC Client versions 1.1.8 and earlier, and SILC Toolkit versions 1.1.9 and earlier.

What types of attacks does CVE-2009-3163 enable?

CVE-2009-3163 enables remote code execution attacks via format string vulnerabilities.

Who is impacted by CVE-2009-3163?

Users and organizations using affected versions of SILC Client or SILC Toolkit are at risk from CVE-2009-3163.

Vulnerability/
CVE-2009-3163

high

7.5

CWE

134

10/9/2009

7/8/2024

CVE-2009-3163

First published: Thu Sep 10 2009(Updated: )

Multiple format string vulnerabilities in lib/silcclient/command.c in Secure Internet Live Conferencing (SILC) Toolkit before 1.1.10, and SILC Client 1.1.8 and earlier, allow remote attackers to execute arbitrary code via format string specifiers in a channel name, related to (1) silc_client_command_topic, (2) silc_client_command_kick, (3) silc_client_command_leave, and (4) silc_client_command_users.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
SILC Client	=1.1.6
SILC Client	<=1.1.8
Silc Toolkit	=1.1.3
Silc Toolkit	=1.1.5
Silc Toolkit	<=1.1.9
SILC Client	=1.1.1
SILC Client	=1.1.2
Silc Toolkit	=1.1.8
SILC Client	=1.1.3
Silc Toolkit	=1.1
SILC Client	=1.1.4
Silc Toolkit	=1.1.1
Silc Toolkit	=1.1.6
SILC Client	=1.1.7
Silc Toolkit	=1.1.4
Silc Toolkit	=1.1.2

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2009-3163?
CVE-2009-3163 is classified as a high severity vulnerability, as it allows remote attackers to execute arbitrary code.
How do I fix CVE-2009-3163?
To fix CVE-2009-3163, update to SILC Toolkit version 1.1.10 or later and SILC Client version 1.1.9 or later.
What software versions are affected by CVE-2009-3163?
CVE-2009-3163 affects SILC Client versions 1.1.8 and earlier, and SILC Toolkit versions 1.1.9 and earlier.
What types of attacks does CVE-2009-3163 enable?
CVE-2009-3163 enables remote code execution attacks via format string vulnerabilities.
Who is impacted by CVE-2009-3163?
Users and organizations using affected versions of SILC Client or SILC Toolkit are at risk from CVE-2009-3163.

agent/type
collector/mitre-cve
source/MITRE
agent/author
agent/references
agent/weakness
agent/severity
agent/last-modified-date
agent/description
agent/first-publish-date
agent/event
agent/source
agent/softwarecombine
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/silcnet
canonical/silc client
version/silc client/1.1.6
version/silc client/1.1.8
canonical/silc toolkit
version/silc toolkit/1.1.3
version/silc toolkit/1.1.5
version/silc toolkit/1.1.9
version/silc client/1.1.1
version/silc client/1.1.2
version/silc toolkit/1.1.8
version/silc client/1.1.3
version/silc toolkit/1.1
version/silc client/1.1.4
version/silc toolkit/1.1.1
version/silc toolkit/1.1.6
version/silc client/1.1.7
version/silc toolkit/1.1.4
version/silc toolkit/1.1.2