CVE-2003-0478 | Vulnerability Database | Aqua Security

Format string vulnerability in (1) Bahamut IRCd 1.4.35 and earlier, and other IRC daemons based on Bahamut including (2) digatech 1.2.1, (3) methane 0.1.1, (4) AndromedeIRCd 1.2.3-Release, and (5) ircd-RU, when running in debug mode, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a request containing format strings.

Affected Software

Name	Vendor	Start Version	End Version
Adromedeircd	Andromede	1.2.3 (including)	1.2.3 (including)
Methane	Daniel_moss	0.1.1 (including)	0.1.1 (including)
Digatech	Hans_westerhof	1.2.1 (including)	1.2.1 (including)
Ircd-ru	Wenet	*	*

References

http://marc.info/?l=bugtraq\u0026m=105665996104723\u0026w=2
http://marc.info/?l=bugtraq\u0026m=105673489525906\u0026w=2
http://marc.info/?l=bugtraq\u0026m=105673555726823\u0026w=2
http://marc.info/?l=bugtraq\u0026m=105665996104723\u0026w=2
http://marc.info/?l=bugtraq\u0026m=105673489525906\u0026w=2
http://marc.info/?l=bugtraq\u0026m=105673555726823\u0026w=2

NVD	https://nvd.nist.gov/vuln/detail/CVE-2003-0478
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html