VULHUB ™

BitchX has been reported prone to a heap based memory corruption vulnerability. Reportedly when an excessively long hostname is supplied to a specific BitchX function an internal memory buffer is overflowed. This action may cause adjacent heap based memory to be corrupted with attacker-supplied values. There is a potential that this issue could be exploited to corrupt memory managment information. As a result, a hostile IRC server may be capable of executing arbitrary code on a target client. This vulnerability was reported to affect BitchX 1.0c19 earlier versions may also be affected.

BitchX has been reported prone to a heap based memory corruption vulnerability. Reportedly when an excessively long hostname is supplied to a specific BitchX function an internal memory buffer is overflowed. This action may cause adjacent heap based memory to be corrupted with attacker-supplied values. There is a potential that this issue could be exploited to corrupt memory managment information. As a result, a hostile IRC server may be capable of executing arbitrary code on a target client. This vulnerability was reported to affect BitchX 1.0c19 earlier versions may also be affected.