CVE-2016-2087 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2016-2087 Interim 1 21 2025-04-22T23:46:23Z current 2021-05-30T13:39:04Z 2025-04-22T23:46:23Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2016-2087 Directory traversal vulnerability in the client in HexChat 2.11.0 allows remote IRC servers to read or modify arbitrary files via a .. (dot dot) in the server name. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.suse.com/pipermail/sle-security-updates/2020-October/007528.html E-Mail link for SUSE-SU-2020:2872-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE Linux Enterprise Workstation Extension 12 SP5 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE Linux Enterprise Workstation Extension 12 SP5 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 hexchat hexchat-2.12.0-6.5.146 hexchat-devel hexchat-lang hexchat-lang-2.12.0-6.5.146 hexchat-plugins-lua hexchat-plugins-perl hexchat-plugins-python3 hexchat-2.12.0-6.5.146 as a component of SUSE Linux Enterprise Workstation Extension 12 SP5 hexchat-lang-2.12.0-6.5.146 as a component of SUSE Linux Enterprise Workstation Extension 12 SP5 hexchat as a component of SUSE Linux Enterprise Workstation Extension 15 SP1 hexchat-devel as a component of SUSE Linux Enterprise Workstation Extension 15 SP1 hexchat-lang as a component of SUSE Linux Enterprise Workstation Extension 15 SP1 hexchat-plugins-lua as a component of SUSE Linux Enterprise Workstation Extension 15 SP1 hexchat-plugins-perl as a component of SUSE Linux Enterprise Workstation Extension 15 SP1 hexchat-plugins-python3 as a component of SUSE Linux Enterprise Workstation Extension 15 SP1 hexchat as a component of SUSE Linux Enterprise Workstation Extension 15 SP2 hexchat-devel as a component of SUSE Linux Enterprise Workstation Extension 15 SP2 hexchat-lang as a component of SUSE Linux Enterprise Workstation Extension 15 SP2 hexchat-plugins-lua as a component of SUSE Linux Enterprise Workstation Extension 15 SP2 hexchat-plugins-perl as a component of SUSE Linux Enterprise Workstation Extension 15 SP2 hexchat-plugins-python3 as a component of SUSE Linux Enterprise Workstation Extension 15 SP2 Directory traversal vulnerability in the client in HexChat 2.11.0 allows remote IRC servers to read or modify arbitrary files via a .. (dot dot) in the server name. CVE-2016-2087 SUSE Linux Enterprise Workstation Extension 12 SP5:hexchat-2.12.0-6.5.146 SUSE Linux Enterprise Workstation Extension 12 SP5:hexchat-lang-2.12.0-6.5.146 SUSE Linux Enterprise Workstation Extension 15 SP1:hexchat SUSE Linux Enterprise Workstation Extension 15 SP1:hexchat-devel SUSE Linux Enterprise Workstation Extension 15 SP1:hexchat-lang SUSE Linux Enterprise Workstation Extension 15 SP1:hexchat-plugins-lua SUSE Linux Enterprise Workstation Extension 15 SP1:hexchat-plugins-perl SUSE Linux Enterprise Workstation Extension 15 SP1:hexchat-plugins-python3 SUSE Linux Enterprise Workstation Extension 15 SP2:hexchat SUSE Linux Enterprise Workstation Extension 15 SP2:hexchat-devel SUSE Linux Enterprise Workstation Extension 15 SP2:hexchat-lang SUSE Linux Enterprise Workstation Extension 15 SP2:hexchat-plugins-lua SUSE Linux Enterprise Workstation Extension 15 SP2:hexchat-plugins-perl SUSE Linux Enterprise Workstation Extension 15 SP2:hexchat-plugins-python3 low 4 AV:N/AC:H/Au:N/C:P/I:P/A:N 7.4 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N