Heap-based buffer overflow in Xchat-WDK before 1499-4 (2012-01-18) xchat 2.8.6 on Maemo architecture could allow remote attackers to cause a denial of service (xchat client crash) or execute arbitrary code via a UTF-8 line from server containing characters outside of the Basic Multilingual Plane (BMP).
| Product | Vendor | Version |
|---|---|---|
| Xchat-WDK | xchat | < 4c2d14c40a68678d885eab4008a0129646805bae |
| xchat | xchat | 15.2(7a)E0b |