Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Red Hat Local Security Checks >> RHSA-2004-585: xchat


Vulnerability Assessment Details

RHSA-2004-585: xchat

Vulnerability Assessment Summary
Check for the version of the xchat packages

Detailed Explanation for this Vulnerability Assessment


An updated xchat package that fixes a stack buffer overflow in the SOCKSv5
proxy code.

X-Chat is a graphical IRC chat client for the X Window System.

A stack buffer overflow has been fixed in the SOCKSv5 proxy code.
A possible hacker could create a malicious SOCKSv5 proxy server in such a way
that X-Chat would execute arbitrary code if a victim configured X-Chat to
use the proxy. The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CVE-2004-0409 to this issue.

Users of X-Chat should upgrade to this erratum package, which contains a
backported security patch, and is not vulnerable to this issue.




Solution : http://rhn.redhat.com/errata/RHSA-2004-585.html
Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2004 Tenable Network Security

Cables, Connectors

3710 ATA-133 IDE RAID Card
$4.5
3710 ATA-133 IDE RAID Card pictureNexsan ATABeast ATA Beast Raid Controller Card Fiber Channel J7 FOR IDE DRIVES
$32.98
Nexsan ATABeast ATA Beast Raid Controller Card Fiber Channel J7 FOR IDE  DRIVES pictureIntel RAID Adapters AXXRMS2AF040
$100.0
Intel RAID Adapters AXXRMS2AF040 pictureDell PowerEdge T320 Six Core Xeon E5-2440 2.4GHZ 48GB RAID 12TB SAS Tower Server
$1694.15
Dell PowerEdge T320 Six Core Xeon E5-2440 2.4GHZ 48GB RAID 12TB SAS Tower Server picture


Discussions

No Discussions have been posted on this vulnerability.