CVE-2007-3360
N/A
N/A
Summary
hook.c in BitchX 1.1-final allows remote IRC servers to execute arbitrary commands by sending a client certain data containing NICK and EXEC strings, which exceeds the bounds of a hash table, and injects an EXEC hook function that receives and executes shell commands.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.285737
- http://secunia.com/advisories/34870
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34969
- https://www.exploit-db.com/exploits/4087
- http://www.securityfocus.com/bid/24579
- http://secunia.com/advisories/25759
- http://osvdb.org/37479
References
- http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.285737
- http://secunia.com/advisories/34870
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34969
- https://www.exploit-db.com/exploits/4087
- http://www.securityfocus.com/bid/24579
- http://secunia.com/advisories/25759
- http://osvdb.org/37479
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.