Unrated severityNVD Advisory· Published Mar 19, 2007· Updated Jun 16, 2026
CVE-2007-1503
CVE-2007-1503
Description
Multiple format string vulnerabilities in comm.c in Rhapsody IRC 0.28b allow remote attackers to execute arbitrary code via format string specifiers to the create_ctcp_message function using the message argument to the (1) me or (2) ctcp commands, and possibly related vectors involving the (3) whois, (4) mode, and (5) topic commands.
Affected products
2cpe:2.3:a:rhapsody_irc:rhapsody_irc:0.28b:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:rhapsody_irc:rhapsody_irc:0.28b:*:*:*:*:*:*:*
- (no CPE)range: =0.28b
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.