BncCVEs & Vulnerabilities
3 CVEs affecting Bnc products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.
3 CVEs→ All vendors
Most Affected Products
bnc 15
CVE-2004-1052CRITICAL
Buffer overflow in the getnickuserhost function in BNC 2.8.9, and possibly other versions, allows remote IRC servers to execute arbitrary code via an IRC server response that contains many (1) ! (exclamation) or (2) @ (at sign) characters.
1 Mar 2005
10.0
CVSS
CVE-2004-1482HIGH
The sbuf_getmsg function in BNC incorrectly handles backspace characters, which could allow remote attackers to bypass authentication and gain access to arbitrary scripts.
31 Dec 2004
7.5
CVSS
CVE-2004-2612HIGH
BNC 2.9.0 only grants access when an incorrect password is provided, which allows remote attackers to use the functionality intended for authorized users.
31 Dec 2004
7.5
CVSS
← PrevPage 1 / 1Next →