Vulnerabilities > Epic

DATE CVE VULNERABILITY TITLE RISK
2018-02-20 CVE-2016-6272 XML Injection (aka Blind XPath Injection) vulnerability in Epic Mychart
XPath injection vulnerability in Epic MyChart allows remote attackers to access contents of an XML document containing static display strings, such as field labels, via the topic parameter to help.asp.
network
low complexity
epic CWE-91
5.0
2003-06-09 CVE-2003-0328 Unspecified vulnerability in Epic Epic4 Pre2.002/Pre2.003
EPIC IRC Client (EPIC4) pre2.002, pre2.003, and possibly later versions, allows remote malicious IRC servers to cause a denial of service (crash) and possibly execute arbitrary code via a CTCP request from a large nickname, which causes an incorrect length calculation.
network
low complexity
epic
7.5
2003-06-09 CVE-2003-0324 Buffer Overflow vulnerability in Epic Epic4 1.0.1
Buffer overflows in EPIC IRC Client (EPIC4) 1.0.1 allows remote malicious IRC servers to cause a denial of service (crash) and possibly execute arbitrary code via long replies that are not properly handled by the (1) userhost_cmd_returned function, or (2) Statusbar capability.
network
low complexity
epic
7.5