VYPR
Unrated severityNVD Advisory· Published Mar 19, 2007· Updated Jun 16, 2026

CVE-2007-1503

CVE-2007-1503

Description

Multiple format string vulnerabilities in comm.c in Rhapsody IRC 0.28b allow remote attackers to execute arbitrary code via format string specifiers to the create_ctcp_message function using the message argument to the (1) me or (2) ctcp commands, and possibly related vectors involving the (3) whois, (4) mode, and (5) topic commands.

Affected products

2
  • Rhapsody Irc/IRC2 versions
    cpe:2.3:a:rhapsody_irc:rhapsody_irc:0.28b:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:rhapsody_irc:rhapsody_irc:0.28b:*:*:*:*:*:*:*
    • (no CPE)range: =0.28b

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.