Moole Vulnerability Database

Find real vulnerabilities before they ship

Unknown

CVE-2008-0285

ngIRCd 0.10.x before 0.10.4 and 0.11.0 before 0.11.0-pre2 allows remote attackers to cause a denial of service (crash) via crafted IRC PART message, which triggers an invalid dereference.

PublishedJan 16, 2008, 00:00

Published Bycve@mitre.org

Affected Versions

No affected versions found.

References

http://arthur.barton.de/cgi-bin/viewcvs.cgi/ngircd/ngircd/src/ngircd/irc-channel.c?r1=1.40&r2=1.41&diff_format=h
http://bugs.gentoo.org/show_bug.cgi?id=204834
http://ngircd.barton.de/doc/ChangeLog
http://secunia.com/advisories/28425
http://secunia.com/advisories/28673
http://security.gentoo.org/glsa/glsa-200801-13.xml
http://www.securityfocus.com/bid/27318

Weakness Type

NVD-CWE-Other

CVSS Metrics

Base Score

Vector String

AV:N/AC:L/Au:N/C:N/I:N/A:P

Base SeverityUnknown

Version

2.0

Attack Vector (AV)