Vulnerabilities (CVE)

Filtered by vendor Bnc Subscribe
Filtered by product Bnc
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2004-2612 1 Bnc 1 Bnc 2024-11-20 7.5 HIGH N/A
BNC 2.9.0 only grants access when an incorrect password is provided, which allows remote attackers to use the functionality intended for authorized users.
CVE-2004-1482 1 Bnc 1 Bnc 2024-11-20 7.5 HIGH N/A
The sbuf_getmsg function in BNC incorrectly handles backspace characters, which could allow remote attackers to bypass authentication and gain access to arbitrary scripts.
CVE-2004-1052 3 Bnc, Debian, Gentoo 3 Bnc, Debian Linux, Linux 2024-11-20 10.0 HIGH N/A
Buffer overflow in the getnickuserhost function in BNC 2.8.9, and possibly other versions, allows remote IRC servers to execute arbitrary code via an IRC server response that contains many (1) ! (exclamation) or (2) @ (at sign) characters.