• IDP Daily Update #1320
  posted: 12/01/08
  
• NSM Daily Update #1320
  posted: 12/01/08
  
• Deep Inspection 5.3r5 and above, 5.4, 6.0 #1320
  posted: 12/01/08
  
• Deep Inspection 5.1, 5.2, 5.3r4 and below #1300
  posted: 12/01/08
  
• Deep Inspection 5.0 #1132
  posted: 04/01/08
  
• Antivirus
  posted: 11/30/08

Text Size:        

• Product Information
• Security Products Overview
• Juniper Networks ISG Series
• IDP Demo
• Product Poster & Z-Card 

Title: BitlBee Unspecified Security Bypass Vulnerability

Severity: MODERATE

Description:

BitlBee is an application that enables users to use Instant Messaging (IM) over Internet Relay Chat (IRC).

BitlBee is prone to an unspecified security-bypass vulnerability.

Successfully exploiting this issue may allow attackers to recreate or hijack user accounts on the system. Gaining access to these accounts may aid in further attacks.

Note that previous users' data is not accessible in this attack.

Versions prior to BitlBee 1.2.2 are vulnerable.

Affected Products:

• BitlBee BitlBee 1.2
• BitlBee BitlBee 1.2.1

References:

• BitlBee: BitlBee Change Log
• BitlBee: BitlBee Homepage