CVE-2007-0344

Colloquy < 2.1 - Remote Code Execution via Format String in INVITE Channel Name

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-0344. PoCs published by MoAB.

AI-analyzed exploit summary This exploit targets a format string vulnerability in Colloquy IRC client by sending maliciously crafted INVITE messages to trigger arbitrary code execution. It connects to an IRC server, joins a channel with a format string payload, and invites users to exploit the vulnerability.

Description

Multiple format string vulnerabilities in (1) _invitedToRoom: and (2) _invitedToDirectChat: in Colloquy 2.1 and earlier allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via format string specifiers in the channel name of an INVITE request, related to the implementation of AlertSheet and AlertPanel in Apple AppKit.

Exploits (1)

exploitdb WORKING POC VERIFIED

by MoAB · rubydososx

https://www.exploit-db.com/exploits/3139

View Code ZIP pw:eip

This exploit targets a format string vulnerability in Colloquy IRC client by sending maliciously crafted INVITE messages to trigger arbitrary code execution. It connects to an IRC server, joins a channel with a format string payload, and invites users to exploit the vulnerability.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Colloquy IRC client (version not specified)

No auth needed

Prerequisites: Network access to the target IRC server · Victim must be using a vulnerable version of Colloquy IRC client

MITRE ATT&CK