9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.017 Low
EPSS
Percentile
87.7%
hook.c in BitchX 1.1-final allows remote IRC servers to execute arbitrary
commands by sending a client certain data containing NICK and EXEC strings,
which exceeds the bounds of a hash table, and injects an EXEC hook function
that receives and executes shell commands.
Author | Note |
---|---|
jdstrand | debdiff in LP |
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 6.06 | noarch | ircii-pana | < 1:1.1-4ubuntu0.1 | UNKNOWN |
ubuntu | 6.10 | noarch | ircii-pana | < 1:1.1-4ubuntu1.1 | UNKNOWN |
ubuntu | 7.04 | noarch | ircii-pana | < 1:1.1-4ubuntu2.1 | UNKNOWN |