CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 3CVE-2016-2233 – Hexchat IRC Client 2.11.0 - CAP LS Handling Buffer Overflow
https://notcve.org/view.php?id=CVE-2016-2233
Stack-based buffer overflow in the inbound_cap_ls function in common/inbound.c in HexChat 2.10.2 allows remote IRC servers to cause a denial of service (crash) via a large number of options in a CAP LS message. Desbordamiento de búfer basado en pila en la función inbound_cap_ls en common/inbound.c en HexChat 2.10.2 permite a servidores IRC remotos provocar una denegación de servicio (caída) a través un gran número de opciones en un mensaje CAP LS. Hexchat IRC client version 2.11.0 suffers from a stack buffer overflow vulnerability. • https://www.exploit-db.com/exploits/39657 https://github.com/fath0218/CVE-2016-2233 http://packetstormsecurity.com/files/136563/Hexchat-IRC-Client-2.11.0-CAP-LS-Handling-Buffer-Overflow.html http://www.securityfocus.com/bid/95920 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •