Dconnect » Dconnect Daemon » 0.0.3 : Security Vulnerabilities, CVEs, CVSS score >= 5
The dc_chat function in cmd.dc.c in DConnect Daemon 0.7.0 and earlier allows remote attackers to cause a denial of service (application crash) by sending a client message before providing the nickname, which triggers a null pointer dereference.
Max CVSS
5.0
EPSS Score
7.15%
Published
2006-08-14
Updated
2018-10-17
Stack-based buffer overflow in main.c in DConnect Daemon 0.7.0 and earlier allows remote attackers to execute arbitrary code via a large nickname, which is not properly handled by the listen_thread_udp function.
Max CVSS
7.5
EPSS Score
32.96%
Published
2006-08-14
Updated
2018-10-17
2 vulnerabilities found