CVE-2003-0323

Name of the Vulnerable Software and Affected Versions ircII version 20020912 epic4 (affected versions not specified)

Description The issue involves multiple buffer overflows in the ircII software, potentially allowing remote malicious IRC servers to cause a denial of service or execute arbitrary code. This is due to improper handling of responses by various functions, including ctcp buffer, cannot join channel, status make printable for Statusbar drawing, and create server list. Additionally, there are multiple vulnerabilities in the epic4 package of the Debian GNU/Linux operating system that can be exploited remotely, potentially leading to breaches of confidentiality, integrity, and availability of protected information.

Recommendations For ircII version 20020912, consider disabling the my strcat function or restricting its use until a patch is available. For epic4, at the moment, there is no information about a newer version that contains a fix for this vulnerability.