CVE-2003-0323

EPSS 1.0%

epic4 - buffer overflows

Published: 6/9/2003Modified: 4/28/2026

Also known as:DEBIAN-CVE-2003-0323

Description

Multiple buffer overflows in ircII 20020912 allows remote malicious IRC servers to cause a denial of service (crash) and possibly execute arbitrary code via responses that are not properly fed to the my_strcat function by (1) ctcp_buffer, (2) cannot_join_channel, (3) status_make_printable for Statusbar drawing, (4) create_server_list, and possibly other functions.

Affected packages (4)

Debian/epic4from 0, < 1:1.1.11.20030409-1
Debian/epic4from 0, < 1.1.2.20020219-2.1
Debian/irciifrom 0, < 20030315-1
Debian/irciifrom 0, < 20020322-1.1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2003-0323