Back to search
CVE-2007-1503
Published: Mar 19, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple format string vulnerabilities in comm.c in Rhapsody IRC 0.28b allow remote attackers to execute arbitrary code via format string specifiers to the create_ctcp_message function using the message argument to the (1) me or (2) ctcp commands, and possibly related vectors involving the (3) whois, (4) mode, and (5) topic commands.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
2447
third-party-advisory
x_refsource_SREASON
20070317 Rhapsody IRC 0.28b (NICK) Multiple fs and bof vulnerability
mailing-list
x_refsource_BUGTRAQ
23011
vdb-entry
x_refsource_BID
35001
vdb-entry
x_refsource_OSVDB
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now