← back
CVE-2016-2233

CVE-2016-2233

EPSS 34.7%
Stack-based buffer overflow in the inbound_cap_ls function in common/inbound.c in HexChat 2.10.2 allows remote IRC servers to cause a denial of service (crash) via a large number of options in a CAP LS message.
Affected products
n/a · n/a
public PoCs found4
githubgithub.com/fath0218/CVE-2016-22330cve_referencepacketstormsecurity.com/files/136563/Hexchat-IRC-Client-2.11.0-CAP-LS-Handling-Buffer-Overflow.htmlunverifiedcve_referencewww.exploit-db.com/exploits/39657/unverifiedexploitdbwww.exploit-db.com/exploits/39657unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/136563/Hexchat-IRC-Client-2.11.0-CAP-LS-Handling-Buffer-Overflow.htmlhttps://www.exploit-db.com/exploits/39657/http://www.securityfocus.com/bid/95920