CVE-2004-0409

Name of the Vulnerable Software and Affected Versions XChat versions 1.8.0 through 2.0.8 xchat-gnome (affected versions not specified) xchat-text (affected versions not specified) xchat-common (affected versions not specified)

Description The issue involves multiple vulnerabilities in the XChat package of the Debian GNU/Linux operating system, which can lead to a breach of confidentiality, integrity, and availability of protected information. These vulnerabilities can be exploited remotely. Specifically, a stack-based buffer overflow in the Socks-5 proxy code allows remote attackers to execute arbitrary code when socks5 traversal is enabled.

Recommendations For XChat versions 1.8.0 through 2.0.8, consider disabling the Socks-5 proxy code until a patch is available. For xchat-gnome, xchat-text, and xchat-common, at the moment, there is no information about a newer version that contains a fix for this vulnerability.