Remote Code Execution Vulnerability in Quassel 0.12.4

CVE-2018-1000178 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

A heap corruption of type CWE-120 exists in quassel version 0.12.4 in quasselcore in void DataStreamPeer::processMessage(const QByteArray &msg) datastreampeer.cpp line 62 that allows an attacker to execute code remotely.

Learn more about our Web Application Penetration Testing UK.