CVE-2004-1052

EPSS 1.47%
Published 01.03.2005 05:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Buffer overflow in the getnickuserhost function in BNC 2.8.9, and possibly other versions, allows remote IRC servers to execute arbitrary code via an IRC server response that contains many (1) ! (exclamation) or (2) @ (at sign) characters.

Affected products Warnungen 0 Metrics 2 CWE 0 References 9

Data is provided by the National Vulnerability Database (NVD)

Bnc ≫ Bnc Version2.2.4

Bnc ≫ Bnc Version2.4.6

Bnc ≫ Bnc Version2.4.8

Bnc ≫ Bnc Version2.6

Bnc ≫ Bnc Version2.6.2

Bnc ≫ Bnc Version2.6.4

Bnc ≫ Bnc Version2.8.8

Bnc ≫ Bnc Version2.8.9

Debian ≫ Debian Linux Version3.0 Editionalpha

Debian ≫ Debian Linux Version3.0 Editionarm

Debian ≫ Debian Linux Version3.0 Editionhppa

Debian ≫ Debian Linux Version3.0 Editionia-32

Debian ≫ Debian Linux Version3.0 Editionia-64

Debian ≫ Debian Linux Version3.0 Editionm68k

Debian ≫ Debian Linux Version3.0 Editionmips

Debian ≫ Debian Linux Version3.0 Editionmipsel

Debian ≫ Debian Linux Version3.0 Editionppc

Debian ≫ Debian Linux Version3.0 Editions-390

Debian ≫ Debian Linux Version3.0 Editionsparc

Gentoo ≫ Linux

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	1.47%	0.791

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	10	10	10	AV:N/AC:L/Au:N/C:C/I:C/A:C

http://marc.info/?l=bugtraq&m=110011817627839&w=2

http://secunia.com/advisories/13149/

http://security.lss.hr/en/index.php?page=details&ID=LSS-2004-11-03

http://www.debian.org/security/2004/dsa-595

http://www.securityfocus.com/bid/11647

Patch

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/18013

https://nvd.nist.gov/vuln/detail/CVE-2004-1052

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2004-1052

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2004-1052

EUVD