CVE-2007-4584

Published: Aug 29, 2007Modified: Apr 23, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

Stack-based buffer overflow in BitchX 1.1 Final allows remote IRC servers to execute arbitrary code via a long string in a MODE command, related to the p_mode variable.

Affected (1)

Products: Bitchx: Bitchx

Bitchx

1 product

Bitchx

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Bitchx Bitchx	Version 1.1-final

Related CWEs

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (20)

http://osvdb.org/37480

Source: cve@mitre.org

http://secunia.com/advisories/26578

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/31180

Source: cve@mitre.org

http://secunia.com/advisories/34870

Source: cve@mitre.org

http://security.gentoo.org/glsa/glsa-200807-12.xml

Source: cve@mitre.org

http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.285737

Source: cve@mitre.org

http://www.securityfocus.com/bid/25462

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2007/2994

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/36306

Source: cve@mitre.org

https://www.exploit-db.com/exploits/4321

Source: cve@mitre.org

http://osvdb.org/37480