Lucene search

[email protected]CVE-2007-1502

HistoryMar 19, 2007 - 10:19 p.m.

CVE-2007-1502

2007-03-1922:19:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2007-1502

buffer overflow

rhapsody irc

arbitrary code execution

remote attack

7.9 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.121 Low

EPSS

Percentile

95.3%

JSON

Multiple buffer overflows in Rhapsody IRC 0.28b allow remote attackers to execute arbitrary code via a (1) long command, (2) long server argument to the (a) connect or (b) server commands, (3) long nick argument to the © nick command, or a long (4) nick or (5) message argument to the (d) ctcp, (e) chat, (f) notice, (g) message (msg), or (h) query commands.

CPENameOperatorVersion
rhapsody_irc:rhapsody_ircrhapsody irceq0.28b

CPE	Name	Operator	Version
rhapsody_irc:rhapsody_irc	rhapsody irc	eq	0.28b

References

osvdb.org/35002

osvdb.org/35003

osvdb.org/35004

securityreason.com/securityalert/2447

www.securityfocus.com/archive/1/463092/100/0/threaded

www.securityfocus.com/bid/23011

7.9 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.121 Low

EPSS

Percentile

95.3%

JSON

Related for CVE-2007-1502

prion1 ubuntucve1 securityvulns1