| Vulnerability Name: | CVE-2003-0322 (CCN-11573) | ||||||||
| Assigned: | 2003-03-13 | ||||||||
| Published: | 2003-03-13 | ||||||||
| Updated: | 2008-09-05 | ||||||||
| Summary: | Integer overflow in BitchX IRC client 1.0-0c19 and earlier allows remote malicious IRC servers to cause a denial of service (crash). | ||||||||
| CVSS v3 Severity: | 7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
| ||||||||
| CVSS v2 Severity: | 5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
| ||||||||
| Vulnerability Type: | CWE-Other | ||||||||
| Vulnerability Consequences: | Gain Access | ||||||||
| References: | Source: CCN Type: BugTraq Mailing List, Thu Mar 13 2003 - 16:17:55 CST Buffer overflows in ircII-based clients Source: MITRE Type: CNA CVE-2003-0321 Source: MITRE Type: CNA CVE-2003-0322 Source: MITRE Type: CNA CVE-2003-0323 Source: MITRE Type: CNA CVE-2003-0324 Source: CCN Type: Conectiva Linux Security Announcement CLSA-2003:655 BitchX Source: MISC Type: Patch http://security.debian.org/pool/updates/main/i/ircii-pana/ircii-pana_1.0-0c16-2.1.diff.gz Source: DEBIAN Type: Patch, Vendor Advisory DSA-306 Source: DEBIAN Type: DSA-287 epic -- buffer overflows Source: DEBIAN Type: DSA-291 ircii -- buffer overflows Source: DEBIAN Type: DSA-298 epic4 -- buffer overflows Source: DEBIAN Type: DSA-306 ircii-pana -- buffer overflows Source: CCN Type: OpenPKG-SA-2003.024 ircii Source: CCN Type: OSVDB ID: 11055 BitchX IRC Client Long Hostname Remote Overflow Source: CCN Type: OSVDB ID: 11056 BitchX IRC Client Nickname Remote Overflow Source: CCN Type: OSVDB ID: 11057 BitchX IRC Client Channel Name Remote Overflow Source: CCN Type: OSVDB ID: 11058 BitchX IRC Client Remote Integer Overflow DoS Source: CCN Type: OSVDB ID: 11820 EPIC IRC Client Statusbar Remote Overflow Source: CCN Type: OSVDB ID: 11821 ircII create_server_list Function Remote Overflow Source: CCN Type: OSVDB ID: 11822 ircII status_make_printable Function Remote Overflow Source: CCN Type: OSVDB ID: 11823 ircII cannot_join_channel Function Remote Overflow Source: CCN Type: OSVDB ID: 11824 EPIC IRC Client userhost_cmd_returned Function Remote Overflow Source: CCN Type: OSVDB ID: 11825 ircII ctcp_buffer Function Remote Overflow Source: CCN Type: BID-7086 Multiple BitchX Remote Client-Side Buffer Overflow Vulnerabilities Source: CCN Type: BID-7089 XChat Server Strings Buffer Overflow Vulnerability Source: CCN Type: BID-7091 Epic Userhost_Cmd_Returned Buffer Overflow Vulnerability Source: CCN Type: BID-7093 ircII Make_Status_One Memory Corruption Vulnerability Source: CCN Type: BID-7094 ircII Client-Side Private Message Handling Memory Corruption Vulnerability Source: CCN Type: BID-7095 ircII Client-Side Cannot_Join_Channel Memory Corruption Vulnerability Source: CCN Type: BID-7096 BitchX Remote Cluster() Heap Corruption Vulnerability Source: CCN Type: BID-7097 BitchX Remote Send_CTCP() Memory Corruption Vulnerability Source: CCN Type: BID-7098 ircII Status_Make_Printable Memory Corruption Vulnerability Source: CCN Type: BID-7099 BitchX Remote cannot_join_channel() Buffer Overflow Vulnerability Source: CCN Type: BID-7100 BitchX Remote BX_compress_modes() Buffer Overflow Vulnerability Source: CCN Type: BID-7103 Epic Status Bar Writing Buffer Overflow Vulnerability Source: CCN Type: slackware-security Mailing List, Tue May 20 20:13:09 PDT 2003 [slackware-security] EPIC4 security fixes (SSA:2003-141-01) Source: XF Type: UNKNOWN ircii-multiple-bo(11573) | ||||||||
| Vulnerable Configuration: | Configuration 1: Denotes that component is vulnerable | ||||||||
| Oval Definitions | |||||||||
| |||||||||
| BACK | |||||||||