Low severity3.3NVD Advisory· Published Feb 27, 2017· Updated May 13, 2026

CVE-2016-7553

Description

The buf.pl script before 2.20 in Irssi before 0.8.20 uses weak permissions for the scrollbuffer dump file created between upgrades, which might allow local users to obtain sensitive information from private chat conversations by reading the file.

Affected products

Irssi/Buf.pl
cpe:2.3:a:irssi:buf.pl:*:*:*:*:*:*:*:*
Range: <=2.13

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.openwall.com/lists/oss-security/2016/09/24/1nvdMailing ListPatch
www.openwall.com/lists/oss-security/2016/09/26/4nvdMailing ListPatch
github.com/irssi/scripts.irssi.org/commit/f1b1eb154baa684fad5d65bf4dff79c8ded8b65anvdPatch
irssi.org/security/buf_pl_sa_2016.txtnvdPatchVendor Advisory
www.securityfocus.com/bid/93155nvdThird Party AdvisoryVDB Entry
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7OM3WHWQ7RIAOZSOZZUM4CUYGKSIAGJJ/nvd

News mentions

No linked articles in our index yet.

cvss	0.214
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000