Lucene search

[email protected]CVE-2004-1052

HistoryMar 01, 2005 - 5:00 a.m.

CVE-2004-1052

2005-03-0105:00:00

[email protected]

web.nvd.nist.gov

cve-2004-1052

buffer overflow

bnc

irc

remote code execution

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.7 High

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

83.1%

JSON

Buffer overflow in the getnickuserhost function in BNC 2.8.9, and possibly other versions, allows remote IRC servers to execute arbitrary code via an IRC server response that contains many (1) ! (exclamation) or (2) @ (at sign) characters.

Affected configurations

NVD

Node

bncbncMatch2.2.4

bncbncMatch2.4.6

bncbncMatch2.4.8

bncbncMatch2.6

bncbncMatch2.6.2

bncbncMatch2.6.4

bncbncMatch2.8.8

bncbncMatch2.8.9

Node

debiandebian_linuxMatch3.0alpha

debiandebian_linuxMatch3.0arm

debiandebian_linuxMatch3.0hppa

debiandebian_linuxMatch3.0ia-32

debiandebian_linuxMatch3.0ia-64

debiandebian_linuxMatch3.0m68k

debiandebian_linuxMatch3.0mips

debiandebian_linuxMatch3.0mipsel

debiandebian_linuxMatch3.0ppc

debiandebian_linuxMatch3.0s-390

debiandebian_linuxMatch3.0sparc

gentoolinux

CPENameOperatorVersion
bnc:bncbnceq2.2.4
bnc:bncbnceq2.4.6
bnc:bncbnceq2.4.8
bnc:bncbnceq2.6
bnc:bncbnceq2.6.2
bnc:bncbnceq2.6.4
bnc:bncbnceq2.8.8
bnc:bncbnceq2.8.9