cbcvebase.
CVE-2003-0323
published 2003-06-09

CVE-2003-0323: Multiple buffer overflows in ircII 20020912 allows remote malicious IRC servers to cause a denial of service (crash) and possibly execute arbitrary code via…

PriorityP423high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
2.60%
83.4th percentile
Multiple buffer overflows in ircII 20020912 allows remote malicious IRC servers to cause a denial of service (crash) and possibly execute arbitrary code via responses that are not properly fed to the my_strcat function by (1) ctcp_buffer, (2) cannot_join_channel, (3) status_make_printable for Statusbar drawing, (4) create_server_list, and possibly other functions.

Affected

11 ranges
VendorProductVersion rangeFixed in
debianepic4< epic4 1:1.1.11.20030409-1 (bookworm)epic4 1:1.1.11.20030409-1 (bookworm)
debianircii< epic4 1:1.1.11.20030409-1 (bookworm)epic4 1:1.1.11.20030409-1 (bookworm)
epicepic4>= 0 < 1:1.1.11.20030409-11:1.1.11.20030409-1
epicepic4>= 0 < 1:1.1.11.20030409-11:1.1.11.20030409-1
epicepic4>= 0 < 1:1.1.11.20030409-11:1.1.11.20030409-1
epicepic4>= 0 < 1:1.1.11.20030409-11:1.1.11.20030409-1
michael_sandrofircii
michael_sandrofircii>= 0 < 20030315-120030315-1
michael_sandrofircii>= 0 < 20030315-120030315-1
michael_sandrofircii>= 0 < 20030315-120030315-1
michael_sandrofircii>= 0 < 20030315-120030315-1

CVSS provenance

nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv7.5HIGH
vendor_debian7.5HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.