Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0328

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2003-0328
Last Modified 05 Sep 2008 04:34:03
Published 09 Jun 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-0328

Summary

EPIC IRC Client (EPIC4) pre2.002, pre2.003, and possibly later versions, allows remote malicious IRC servers to cause a denial of service (crash) and possibly execute arbitrary code via a CTCP request from a large nickname, which causes an incorrect length calculation.

Vulnerable Systems

Application

  • Epic4 Pre2.002

  • Epic4 Pre2.003


References

CONFIRM - ftp://ftp.prbh.org/pub/epic/patches/alloca_underrun-patch-1

REDHAT - RHSA-2003:342

DEBIAN - DSA-399

DEBIAN - DSA-306


Last Updated: 27 May 2016 10:37:52