This page lists publicly disclosed CVE vulnerabilities affecting bnc bnc (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2004-1052 | Buffer overflow in the getnickuserhost function in BNC 2.8.9, and possibly other versions, allows remote IRC servers to execute arbitrary code via an IRC server response that contains many (1) ! (exclamation) or (2) @ (at sign) characters. | [email protected] | 10.0 | 1.47% | 2005-03-01 | 2026-04-16 |
| CVE-2004-2612 | BNC 2.9.0 only grants access when an incorrect password is provided, which allows remote attackers to use the functionality intended for authorized users. | [email protected] | 7.5 | 0.91% | 2004-12-31 | 2026-04-16 |
| CVE-2004-1482 | The sbuf_getmsg function in BNC incorrectly handles backspace characters, which could allow remote attackers to bypass authentication and gain access to arbitrary scripts. | [email protected] | 7.5 | 0.81% | 2004-12-31 | 2026-04-16 |