Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> FreeBSD Local Security Checks >> FreeBSD Ports : bnc <= 2.8.9


Vulnerability Assessment Details

FreeBSD Ports : bnc <= 2.8.9

Vulnerability Assessment Summary
Check for the version of the bnc package

Detailed Explanation for this Vulnerability Assessment

The remote host has one of the following packages installed :

bnc <= 2.8.9

The function getnickuserhost() suffers from a buffer-overflow. It is called
when BNC processes a response from IRC server. An attacking server can use
this vulnerability to gain shell access, on the BNC running machine.

Solution : http://www.vuxml.org/freebsd/1f8dea68-3436-11d9-952f-000c6e8f12ef.html
Network Security Threat Level: High

Networks Security ID: 11355

Vulnerability Assessment Copyright: This script is Copyright (C) 2004 Tenable Network Security

Cables, Connectors

Motorola MVME1600-011 VME CPU Board 01-W3066F-01E Warranty
$875.0
Motorola MVME1600-011 VME CPU Board  01-W3066F-01E     Warranty pictureIntel Core i5 4310M 2.7GHz CPU Processor 3MB Cache SR1L2
$82.99
Intel Core i5 4310M 2.7GHz CPU Processor 3MB Cache SR1L2 pictureThermalTake TR2 Socket AM2 Processor CPU Heatsink and Fan 3-Pin / 3-Wire (2)
$42.89
ThermalTake TR2 Socket AM2 Processor CPU Heatsink and Fan 3-Pin / 3-Wire (2) pictureIntel Core i5-6500 Quad-Core (BX80662I56500) Processor
$125.0
Intel Core i5-6500 Quad-Core (BX80662I56500) Processor picture


Discussions

No Discussions have been posted on this vulnerability.