VYPR
Unrated severityNVD Advisory· Published Mar 3, 2009· Updated Jun 16, 2026

CVE-2008-6393

CVE-2008-6393

Description

PSI Jabber client before 0.12.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a file transfer request with a negative value in a SOCKS5 option, which bypasses a signed integer check and triggers an integer overflow and a heap-based buffer overflow.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

10
  • Psi Im/Psi10 versions
    cpe:2.3:a:psi-im:psi:*:*:*:*:*:*:*:*+ 9 more
    • cpe:2.3:a:psi-im:psi:*:*:*:*:*:*:*:*range: <=0.12
    • cpe:2.3:a:psi-im:psi:0.1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:psi-im:psi:0.11:*:*:*:*:*:*:*
    • cpe:2.3:a:psi-im:psi:0.8.6:*:*:*:*:*:*:*
    • cpe:2.3:a:psi-im:psi:0.8.7:*:*:*:*:*:*:*
    • cpe:2.3:a:psi-im:psi:0.9:*:*:*:*:*:*:*
    • cpe:2.3:a:psi-im:psi:0.9.1:*:*:*:*:*:*:*
    • cpe:2.3:a:psi-im:psi:0.9.2:*:*:*:*:*:*:*
    • cpe:2.3:a:psi-im:psi:0.9.3:*:*:*:*:*:*:*
    • (no CPE)range: <0.12.1

Patches

Vulnerability mechanics

References

14

News mentions

0

No linked articles in our index yet.