Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> FreeBSD Local Security Checks >> FreeBSD Ports : bnc <= 2.8.9


Vulnerability Assessment Details

FreeBSD Ports : bnc <= 2.8.9

Vulnerability Assessment Summary
Check for the version of the bnc package

Detailed Explanation for this Vulnerability Assessment

The remote host has one of the following packages installed :

bnc <= 2.8.9

The function getnickuserhost() suffers from a buffer-overflow. It is called
when BNC processes a response from IRC server. An attacking server can use
this vulnerability to gain shell access, on the BNC running machine.

Solution : http://www.vuxml.org/freebsd/1f8dea68-3436-11d9-952f-000c6e8f12ef.html
Network Security Threat Level: High

Networks Security ID: 11355

Vulnerability Assessment Copyright: This script is Copyright (C) 2004 Tenable Network Security

Cables, Connectors

Intel Xeon E5-2680 v3 12-Core 2.5GHz SR1XP Haswell-EP Processor - Grade A
$1199.99
Intel Xeon E5-2680 v3 12-Core 2.5GHz SR1XP Haswell-EP Processor - Grade A pictureHP StorageWorks D2D4112 G2 Backup EH993-60016/EH993B XEON X5550 2.67Ghz 72GB Ram
$200.0
HP StorageWorks D2D4112 G2 Backup EH993-60016/EH993B XEON X5550 2.67Ghz 72GB Ram pictureDell PowerEdge R610 2x X5670 2.93GHz 6 Core 16GB 6x 512GB SATA SSD PERC 6/i
$1560.0
Dell PowerEdge R610 2x X5670 2.93GHz 6 Core 16GB 6x 512GB SATA SSD PERC 6/i pictureDell PowerEdge R610 2x X5550 2.66GHz Quad Core 48GB 6x 256GB SATA SSD PERC 6/i
$1010.0
Dell PowerEdge R610 2x X5550 2.66GHz Quad Core 48GB 6x 256GB SATA SSD PERC 6/i picture


Discussions

No Discussions have been posted on this vulnerability.