Multiple format string vulnerabilities in comm.c in Rhapsody IRC 0.28b allow remote attackers to execute arbitrary code via format string specifiers to the create_ctcp_message function using the message argument to the (1) me or (2) ctcp commands, and possibly related vectors involving the (3) whois, (4) mode, and (5) topic commands.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2007-03-19T22:00:00
Updated: 2024-08-07T12:59:08.590Z
Reserved: 2007-03-19T00:00:00
Link: CVE-2007-1503
Vulnrichment
No data.
NVD
Status : Modified
Published: 2007-03-19T22:19:00.000
Modified: 2018-10-16T16:38:48.910
Link: CVE-2007-1503
Redhat
No data.