cbcvebase.

Bitchx vulnerabilities

4 known vulnerabilities affecting bitchx/bitchx.

Total CVEs
4
CISA KEV
0
Public exploits
3
Exploited in wild
0
Severity breakdown
CRITICAL2MEDIUM2

Vulnerabilities

Page 1 of 1
CVE-2007-3360P3CRITICALCVSS 9.3PoCv1.1-final2007-06-22
CVE-2007-3360 [CRITICAL] CVE-2007-3360: hook.c in BitchX 1.1-final allows remote IRC servers to execute arbitrary commands by sending a clie hook.c in BitchX 1.1-final allows remote IRC servers to execute arbitrary commands by sending a client certain data containing NICK and EXEC strings, which exceeds the bounds of a hash table, and injects an EXEC hook function that receives and executes shell commands.
nvd
CVE-2007-4584P3CRITICALCVSS 10.0PoCv1.1-final2007-08-29
CVE-2007-4584 [CRITICAL] CWE-119 CVE-2007-4584: Stack-based buffer overflow in BitchX 1.1 Final allows remote IRC servers to execute arbitrary code Stack-based buffer overflow in BitchX 1.1 Final allows remote IRC servers to execute arbitrary code via a long string in a MODE command, related to the p_mode variable.
nvd
CVE-2003-1450P4MEDIUMCVSS 5.0PoCv1.0_c16v1.0_c19+2 more2003-12-31
CVE-2003-1450 [MEDIUM] CWE-20 CVE-2003-1450: BitchX 75p3 and 1.0c16 through 1.0c20cvs allows remote attackers to cause a denial of service (segme BitchX 75p3 and 1.0c16 through 1.0c20cvs allows remote attackers to cause a denial of service (segmentation fault) via a malformed RPL_NAMREPLY numeric 353 message.
nvd
CVE-2007-5839P4MEDIUMCVSS 4.6v1.1a2007-11-06
CVE-2007-5839 [MEDIUM] CWE-59 CVE-2007-5839: The e_hostname function in commands.c in BitchX 1.1a allows local users to overwrite arbitrary files The e_hostname function in commands.c in BitchX 1.1a allows local users to overwrite arbitrary files via a symlink attack on temporary files when using the (1) HOSTNAME or (2) IRCHOST command.
nvd
Bitchx vulnerabilities | cvebase