Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> FreeBSD Local Security Checks >> FreeBSD Ports : bnc <= 2.8.9


Vulnerability Assessment Details

FreeBSD Ports : bnc <= 2.8.9

Vulnerability Assessment Summary
Check for the version of the bnc package

Detailed Explanation for this Vulnerability Assessment

The remote host has one of the following packages installed :

bnc <= 2.8.9

The function getnickuserhost() suffers from a buffer-overflow. It is called
when BNC processes a response from IRC server. An attacking server can use
this vulnerability to gain shell access, on the BNC running machine.

Solution : http://www.vuxml.org/freebsd/1f8dea68-3436-11d9-952f-000c6e8f12ef.html
Network Security Threat Level: High

Networks Security ID: 11355

Vulnerability Assessment Copyright: This script is Copyright (C) 2004 Tenable Network Security

Cables, Connectors

ASRock 970A-G/3.1 Socket AM3+/ AMD 970/ DDR3/ Quad CrossFireX/ SATA3USB3.1/ M.2
$141.99
ASRock 970A-G/3.1 Socket AM3+/ AMD 970/ DDR3/ Quad CrossFireX/ SATA3USB3.1/ M.2 pictureMSI Z170A Gaming M5, LGA 1151, DDR4
$49.95
MSI Z170A Gaming M5, LGA 1151, DDR4 pictureMSI - MPG Z390 GAMING PLUS (Socket LGA1151) USB 3.1 Gen 1 Intel Motherboard w...
$99.99
MSI - MPG Z390 GAMING PLUS (Socket LGA1151) USB 3.1 Gen 1 Intel Motherboard w... pictureSupermicro H11SSW-NT Motherboard, AMD EPYC 7000, Socket SP3
$698.99
Supermicro H11SSW-NT Motherboard, AMD EPYC 7000, Socket SP3 picture


Discussions

No Discussions have been posted on this vulnerability.