VYPR
← All advisories
Unrated severityNVD Advisory· Published Mar 1, 2005· Updated Apr 16, 2026

CVE-2004-1052

CVE-2004-1052

Description

Buffer overflow in the getnickuserhost function in BNC 2.8.9, and possibly other versions, allows remote IRC servers to execute arbitrary code via an IRC server response that contains many (1) ! (exclamation) or (2) @ (at sign) characters.

Affected products

20
  • Bnc/Bnc8 versions
    cpe:2.3:a:bnc:bnc:2.2.4:*:*:*:*:*:*:*+ 7 more
    • cpe:2.3:a:bnc:bnc:2.2.4:*:*:*:*:*:*:*
    • cpe:2.3:a:bnc:bnc:2.4.6:*:*:*:*:*:*:*
    • cpe:2.3:a:bnc:bnc:2.4.8:*:*:*:*:*:*:*
    • cpe:2.3:a:bnc:bnc:2.6:*:*:*:*:*:*:*
    • cpe:2.3:a:bnc:bnc:2.6.2:*:*:*:*:*:*:*
    • cpe:2.3:a:bnc:bnc:2.6.4:*:*:*:*:*:*:*
    • cpe:2.3:a:bnc:bnc:2.8.8:*:*:*:*:*:*:*
    • cpe:2.3:a:bnc:bnc:2.8.9:*:*:*:*:*:*:*
  • Debian/Debian Linux11 versions
    cpe:2.3:o:debian:debian_linux:3.0:*:alpha:*:*:*:*:*+ 10 more
    • cpe:2.3:o:debian:debian_linux:3.0:*:alpha:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:arm:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:hppa:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:ia-32:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:ia-64:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:m68k:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:mips:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:mipsel:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:ppc:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:s-390:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:sparc:*:*:*:*:*
  • Gentoo/Linux
    cpe:2.3:o:gentoo:linux:*:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

6

News mentions

0

No linked articles in our index yet.