Back to search
CVE-2007-3360
Published: Jun 22, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
hook.c in BitchX 1.1-final allows remote IRC servers to execute arbitrary commands by sending a client certain data containing NICK and EXEC strings, which exceeds the bounds of a hash table, and injects an EXEC hook function that receives and executes shell commands.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
SSA:2009-116-02
vendor-advisory
x_refsource_SLACKWARE
34870
third-party-advisory
x_refsource_SECUNIA
bitchx-hook-command-execution(34969)
vdb-entry
x_refsource_XF
4087
exploit
x_refsource_EXPLOIT-DB
24579
vdb-entry
x_refsource_BID
25759
third-party-advisory
x_refsource_SECUNIA
37479
vdb-entry
x_refsource_OSVDB
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now