Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Red Hat Local Security Checks >> RHSA-2004-585: xchat


Vulnerability Assessment Details

RHSA-2004-585: xchat

Vulnerability Assessment Summary
Check for the version of the xchat packages

Detailed Explanation for this Vulnerability Assessment


An updated xchat package that fixes a stack buffer overflow in the SOCKSv5
proxy code.

X-Chat is a graphical IRC chat client for the X Window System.

A stack buffer overflow has been fixed in the SOCKSv5 proxy code.
A possible hacker could create a malicious SOCKSv5 proxy server in such a way
that X-Chat would execute arbitrary code if a victim configured X-Chat to
use the proxy. The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CVE-2004-0409 to this issue.

Users of X-Chat should upgrade to this erratum package, which contains a
backported security patch, and is not vulnerable to this issue.




Solution : http://rhn.redhat.com/errata/RHSA-2004-585.html
Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2004 Tenable Network Security

Cables, Connectors

Client Access Licenses FOR Microsoft Windows Server 2008
$100.0
Client Access  Licenses FOR Microsoft Windows Server 2008 pictureGenuine Dell PowerEdge 2650 DPS-500CB-A 500W Server Power Supply
$10.9
Genuine Dell PowerEdge 2650 DPS-500CB-A 500W Server Power Supply  pictureToshiba HARD DRIVE Internal 3.5" 1TB SATA SERVER OR DESKTOP HDD PC DVR IMAC CCTV
$43.44
Toshiba HARD DRIVE Internal 3.5Dell PowerEdge R620 2x Xeon E5-2670 8-Core 2.6GHz 160GB RAM 0HD PERC H710 RAID
$390.0
Dell PowerEdge R620 2x Xeon E5-2670 8-Core 2.6GHz 160GB RAM 0HD PERC H710 RAID picture


Discussions

No Discussions have been posted on this vulnerability.