Remote Code Execution and Denial of Service Vulnerability in BitlBee

Remote Code Execution and Denial of Service Vulnerability in BitlBee

CVE-2016-10189 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

BitlBee before 3.5 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) and possibly execute arbitrary code via a file transfer request for a contact that is not in the contact list.

Learn more about our Contact.