CVE-2004-0409
published 2004-06-01CVE-2004-0409: Stack-based buffer overflow in the Socks-5 proxy code for XChat 1.8.0 to 2.0.8, with socks5 traversal enabled, allows remote attackers to execute arbitrary…
PriorityP346high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
8.96%
94.6th percentile
Stack-based buffer overflow in the Socks-5 proxy code for XChat 1.8.0 to 2.0.8, with socks5 traversal enabled, allows remote attackers to execute arbitrary code.
Affected
29 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| xchat | xchat | — | — |
| xchat | xchat | — | — |
| xchat | xchat | — | — |
| xchat | xchat | — | — |
| xchat | xchat | — | — |
| xchat | xchat | — | — |
| xchat | xchat | — | — |
| xchat | xchat | — | — |
| xchat | xchat | — | — |
| xchat | xchat | — | — |
| xchat | xchat | — | — |
| xchat | xchat | — | — |
| xchat | xchat | — | — |
| xchat | xchat | — | — |
| xchat | xchat | — | — |
| xchat | xchat | — | — |
| xchat | xchat | — | — |
| xchat | xchat | — | — |
| xchat | xchat | — | — |
| xchat | xchat | — | — |
| xchat | xchat | — | — |
| xchat | xchat | — | — |
| xchat | xchat | — | — |
| xchat | xchat | — | — |
| xchat | xchat | — | — |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vendor_redhat7.5HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
security flaw
vendor_redhat·2004-04-05·CVSS 7.5
CVE-2004-0409 [HIGH] security flaw
security flaw
Stack-based buffer overflow in the Socks-5 proxy code for XChat 1.8.0 to 2.0.8, with socks5 traversal enabled, allows remote attackers to execute arbitrary code.
GHSA
GHSA-jx75-hx64-35mh: Stack-based buffer overflow in the Socks-5 proxy code for XChat 1
ghsa_unreviewed·2022-04-29
CVE-2004-0409 [HIGH] GHSA-jx75-hx64-35mh: Stack-based buffer overflow in the Socks-5 proxy code for XChat 1
Stack-based buffer overflow in the Socks-5 proxy code for XChat 1.8.0 to 2.0.8, with socks5 traversal enabled, allows remote attackers to execute arbitrary code.
No detection rules found.
Bugzilla
CVE-2004-0409 security flaw
bugzilla·2018-08-16·CVSS 7.5
CVE-2004-0409 [HIGH] CVE-2004-0409 security flaw
CVE-2004-0409 security flaw
Flaw bug created to hold information about an old flaw we knew something about. For more details see the MITRE CVE description.
Discussion:
MITRE description:
Stack-based buffer overflow in the Socks-5 proxy code for XChat 1.8.0 to 2.0.8, with socks5 traversal enabled, allows remote attackers to execute arbitrary code.
Bugzilla
CAN-2004-0409 XChat buffer overflow in socks5 proxy
bugzilla·2004-04-20
[MEDIUM] CAN-2004-0409 XChat buffer overflow in socks5 proxy
CAN-2004-0409 XChat buffer overflow in socks5 proxy
A flaw in the XChat's Socks-5 proxy code could allow arbitrary code
execution. To exploit this flaw an attacker would need to create a
malicious socks-5 proxy that the victim connects to.
CAN-2004-0409 Affects: 3AS 3ES 3WS
CAN-2004-0409 Affects: 2.1AS 2.1AW 2.1ES 2.1WS
This issue was public on Mon, 5 Apr 2004
Discussion:
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2004-0409 links to
http://mail.nl.linux.org/xchat-announce/2004-04/msg00000.html for
more information.
"XChat's Socks-5 proxy code is vulnerable to a remote exploit. To
successfully exploit the code, you would need to enable socks5
traversal (default off) and connect to the attacker's own custom
proxy server.
"If you never intend to use a Socks5 proxy, you are not a
http://mail.nl.linux.org/xchat-announce/2004-04/msg00000.htmlhttp://security.gentoo.org/glsa/glsa-200404-15.xmlhttp://www.fedoralegacy.org/updates/FC2/2005-11-14-FLSA_2005_123013http://www.redhat.com/support/errata/RHSA-2004-177.htmlhttp://www.redhat.com/support/errata/RHSA-2004-585.htmlhttp://www.xchat.org/https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11312https://www.debian.org/security/2004/dsa-493http://mail.nl.linux.org/xchat-announce/2004-04/msg00000.htmlhttp://security.gentoo.org/glsa/glsa-200404-15.xmlhttp://www.fedoralegacy.org/updates/FC2/2005-11-14-FLSA_2005_123013http://www.redhat.com/support/errata/RHSA-2004-177.htmlhttp://www.redhat.com/support/errata/RHSA-2004-585.htmlhttp://www.xchat.org/https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11312https://www.debian.org/security/2004/dsa-493
2004-06-01
Published