Search
Find a vulnerability
Search criteria
ⓘ
Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.
12 vulnerabilities by ngircd
CVE-2013-1747 (GCVE-0-2013-1747)
Vulnerability from nvd – Published: 2013-03-28 23:00 – Updated: 2024-08-06 15:13
VLAI
EPSS
VEX
Summary
channel.c in ngIRCd 20 and 20.1 allows remote attackers to cause a denial of service (assertion failure and crash) via a KICK command for a user who is not on the associated channel.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
7 references
| URL | Tags |
|---|---|
| http://www.osvdb.com/show/osvdb/91836 | vdb-entryx_refsource_OSVDB |
| http://lists.fedoraproject.org/pipermail/package-… | vendor-advisoryx_refsource_FEDORA |
| http://arthur.barton.de/pipermail/ngircd-ml/2013-… | mailing-listx_refsource_MLIST |
| https://arthur.barton.de/cgi-bin/gitweb.cgi?p=ngi… | x_refsource_MISC |
| http://ngircd.barton.de/doc/NEWS | x_refsource_CONFIRM |
| http://secunia.com/advisories/52982 | third-party-advisoryx_refsource_SECUNIA |
| http://arthur.barton.de/pipermail/ngircd-ml/2013-… | mailing-listx_refsource_MLIST |
Date Public
2013-02-15 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T15:13:32.520Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "91836",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://www.osvdb.com/show/osvdb/91836"
},
{
"name": "FEDORA-2013-4593",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2013-April/101706.html"
},
{
"name": "[ngIRCd-ML] 20130217 ngIRCd 20.2",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://arthur.barton.de/pipermail/ngircd-ml/2013-February/000625.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://arthur.barton.de/cgi-bin/gitweb.cgi?p=ngircd.git%3Bh=0e63fb3fa7ac4ca048e8c2b648d2be3fd0572311"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://ngircd.barton.de/doc/NEWS"
},
{
"name": "52982",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/52982"
},
{
"name": "[ngIRCd-ML] 20130215 ngIRCd 20.2",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://arthur.barton.de/pipermail/ngircd-ml/2013-February/000623.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2013-02-15T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "channel.c in ngIRCd 20 and 20.1 allows remote attackers to cause a denial of service (assertion failure and crash) via a KICK command for a user who is not on the associated channel."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2013-12-01T17:26:34.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "91836",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://www.osvdb.com/show/osvdb/91836"
},
{
"name": "FEDORA-2013-4593",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2013-April/101706.html"
},
{
"name": "[ngIRCd-ML] 20130217 ngIRCd 20.2",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://arthur.barton.de/pipermail/ngircd-ml/2013-February/000625.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://arthur.barton.de/cgi-bin/gitweb.cgi?p=ngircd.git%3Bh=0e63fb3fa7ac4ca048e8c2b648d2be3fd0572311"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://ngircd.barton.de/doc/NEWS"
},
{
"name": "52982",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/52982"
},
{
"name": "[ngIRCd-ML] 20130215 ngIRCd 20.2",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://arthur.barton.de/pipermail/ngircd-ml/2013-February/000623.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2013-1747",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "channel.c in ngIRCd 20 and 20.1 allows remote attackers to cause a denial of service (assertion failure and crash) via a KICK command for a user who is not on the associated channel."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "91836",
"refsource": "OSVDB",
"url": "http://www.osvdb.com/show/osvdb/91836"
},
{
"name": "FEDORA-2013-4593",
"refsource": "FEDORA",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2013-April/101706.html"
},
{
"name": "[ngIRCd-ML] 20130217 ngIRCd 20.2",
"refsource": "MLIST",
"url": "http://arthur.barton.de/pipermail/ngircd-ml/2013-February/000625.html"
},
{
"name": "https://arthur.barton.de/cgi-bin/gitweb.cgi?p=ngircd.git;h=0e63fb3fa7ac4ca048e8c2b648d2be3fd0572311",
"refsource": "MISC",
"url": "https://arthur.barton.de/cgi-bin/gitweb.cgi?p=ngircd.git;h=0e63fb3fa7ac4ca048e8c2b648d2be3fd0572311"
},
{
"name": "http://ngircd.barton.de/doc/NEWS",
"refsource": "CONFIRM",
"url": "http://ngircd.barton.de/doc/NEWS"
},
{
"name": "52982",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/52982"
},
{
"name": "[ngIRCd-ML] 20130215 ngIRCd 20.2",
"refsource": "MLIST",
"url": "http://arthur.barton.de/pipermail/ngircd-ml/2013-February/000623.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2013-1747",
"datePublished": "2013-03-28T23:00:00.000Z",
"dateReserved": "2013-02-15T00:00:00.000Z",
"dateUpdated": "2024-08-06T15:13:32.520Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2009-4652 (GCVE-0-2009-4652)
Vulnerability from nvd – Published: 2010-02-26 18:09 – Updated: 2024-08-07 07:08
VLAI
EPSS
VEX
Summary
The (1) Conn_GetCipherInfo and (2) Conn_UsesSSL functions in src/ngircd/conn.c in ngIRCd 13 and 14, when SSL/TLS support is present and standalone mode is disabled, allow remote attackers to cause a denial of service (application crash) by sending the MOTD command from another server in the same IRC network, possibly related to an array index error.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
8 references
| URL | Tags |
|---|---|
| http://arthur.barton.de/cgi-bin/gitweb.cgi?p=ngir… | x_refsource_MISC |
| http://ngircd.barton.de/doc/ChangeLog | x_refsource_CONFIRM |
| http://arthur.barton.de/cgi-bin/gitweb.cgi?p=ngir… | x_refsource_CONFIRM |
| http://www.securityfocus.com/bid/37021 | vdb-entryx_refsource_BID |
| http://www.vupen.com/english/advisories/2009/3240 | vdb-entryx_refsource_VUPEN |
| http://secunia.com/advisories/37343 | third-party-advisoryx_refsource_SECUNIA |
| http://ngircd.barton.de/doc/NEWS | x_refsource_CONFIRM |
| https://exchange.xforce.ibmcloud.com/vulnerabilit… | vdb-entryx_refsource_XF |
Date Public
2009-05-05 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T07:08:37.994Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://arthur.barton.de/cgi-bin/gitweb.cgi?p=ngircd.git%3Ba=blobdiff%3Bf=src/ngircd/conn.c%3Bh=c6095a31c613bc5ca127d55b8723e15b836f1cca%3Bhp=9752a6191c7e2da5b0df64779e9cc28ad1e6241c%3Bhb=627b0b713c52406e50c84bb9459e7794262920a2%3Bhpb=95428a72ffb5214826b61d5e77f860e7ef6a6c9e"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://ngircd.barton.de/doc/ChangeLog"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://arthur.barton.de/cgi-bin/gitweb.cgi?p=ngircd.git%3Ba=commit%3Bh=627b0b713c52406e50c84bb9459e7794262920a2"
},
{
"name": "37021",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/37021"
},
{
"name": "ADV-2009-3240",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2009/3240"
},
{
"name": "37343",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/37343"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://ngircd.barton.de/doc/NEWS"
},
{
"name": "ngircd-ssltls-dos(54272)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/54272"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2009-05-05T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "The (1) Conn_GetCipherInfo and (2) Conn_UsesSSL functions in src/ngircd/conn.c in ngIRCd 13 and 14, when SSL/TLS support is present and standalone mode is disabled, allow remote attackers to cause a denial of service (application crash) by sending the MOTD command from another server in the same IRC network, possibly related to an array index error."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-08-16T14:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "http://arthur.barton.de/cgi-bin/gitweb.cgi?p=ngircd.git%3Ba=blobdiff%3Bf=src/ngircd/conn.c%3Bh=c6095a31c613bc5ca127d55b8723e15b836f1cca%3Bhp=9752a6191c7e2da5b0df64779e9cc28ad1e6241c%3Bhb=627b0b713c52406e50c84bb9459e7794262920a2%3Bhpb=95428a72ffb5214826b61d5e77f860e7ef6a6c9e"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://ngircd.barton.de/doc/ChangeLog"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://arthur.barton.de/cgi-bin/gitweb.cgi?p=ngircd.git%3Ba=commit%3Bh=627b0b713c52406e50c84bb9459e7794262920a2"
},
{
"name": "37021",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/37021"
},
{
"name": "ADV-2009-3240",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2009/3240"
},
{
"name": "37343",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/37343"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://ngircd.barton.de/doc/NEWS"
},
{
"name": "ngircd-ssltls-dos(54272)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/54272"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2009-4652",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The (1) Conn_GetCipherInfo and (2) Conn_UsesSSL functions in src/ngircd/conn.c in ngIRCd 13 and 14, when SSL/TLS support is present and standalone mode is disabled, allow remote attackers to cause a denial of service (application crash) by sending the MOTD command from another server in the same IRC network, possibly related to an array index error."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://arthur.barton.de/cgi-bin/gitweb.cgi?p=ngircd.git;a=blobdiff;f=src/ngircd/conn.c;h=c6095a31c613bc5ca127d55b8723e15b836f1cca;hp=9752a6191c7e2da5b0df64779e9cc28ad1e6241c;hb=627b0b713c52406e50c84bb9459e7794262920a2;hpb=95428a72ffb5214826b61d5e77f860e7ef6a6c9e",
"refsource": "MISC",
"url": "http://arthur.barton.de/cgi-bin/gitweb.cgi?p=ngircd.git;a=blobdiff;f=src/ngircd/conn.c;h=c6095a31c613bc5ca127d55b8723e15b836f1cca;hp=9752a6191c7e2da5b0df64779e9cc28ad1e6241c;hb=627b0b713c52406e50c84bb9459e7794262920a2;hpb=95428a72ffb5214826b61d5e77f860e7ef6a6c9e"
},
{
"name": "http://ngircd.barton.de/doc/ChangeLog",
"refsource": "CONFIRM",
"url": "http://ngircd.barton.de/doc/ChangeLog"
},
{
"name": "http://arthur.barton.de/cgi-bin/gitweb.cgi?p=ngircd.git;a=commit;h=627b0b713c52406e50c84bb9459e7794262920a2",
"refsource": "CONFIRM",
"url": "http://arthur.barton.de/cgi-bin/gitweb.cgi?p=ngircd.git;a=commit;h=627b0b713c52406e50c84bb9459e7794262920a2"
},
{
"name": "37021",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/37021"
},
{
"name": "ADV-2009-3240",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2009/3240"
},
{
"name": "37343",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/37343"
},
{
"name": "http://ngircd.barton.de/doc/NEWS",
"refsource": "CONFIRM",
"url": "http://ngircd.barton.de/doc/NEWS"
},
{
"name": "ngircd-ssltls-dos(54272)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/54272"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2009-4652",
"datePublished": "2010-02-26T18:09:00.000Z",
"dateReserved": "2010-02-26T00:00:00.000Z",
"dateUpdated": "2024-08-07T07:08:37.994Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2008-0285 (GCVE-0-2008-0285)
Vulnerability from nvd – Published: 2008-01-15 23:00 – Updated: 2024-08-07 07:39
VLAI
EPSS
VEX
Summary
ngIRCd 0.10.x before 0.10.4 and 0.11.0 before 0.11.0-pre2 allows remote attackers to cause a denial of service (crash) via crafted IRC PART message, which triggers an invalid dereference.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
7 references
| URL | Tags |
|---|---|
| http://ngircd.barton.de/doc/ChangeLog | x_refsource_CONFIRM |
| http://secunia.com/advisories/28673 | third-party-advisoryx_refsource_SECUNIA |
| http://secunia.com/advisories/28425 | third-party-advisoryx_refsource_SECUNIA |
| http://arthur.barton.de/cgi-bin/viewcvs.cgi/ngirc… | x_refsource_MISC |
| http://bugs.gentoo.org/show_bug.cgi?id=204834 | x_refsource_CONFIRM |
| http://www.securityfocus.com/bid/27318 | vdb-entryx_refsource_BID |
| http://security.gentoo.org/glsa/glsa-200801-13.xml | vendor-advisoryx_refsource_GENTOO |
Date Public
2008-01-15 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T07:39:35.057Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://ngircd.barton.de/doc/ChangeLog"
},
{
"name": "28673",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/28673"
},
{
"name": "28425",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/28425"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://arthur.barton.de/cgi-bin/viewcvs.cgi/ngircd/ngircd/src/ngircd/irc-channel.c?r1=1.40\u0026r2=1.41\u0026diff_format=h"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://bugs.gentoo.org/show_bug.cgi?id=204834"
},
{
"name": "27318",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/27318"
},
{
"name": "GLSA-200801-13",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "http://security.gentoo.org/glsa/glsa-200801-13.xml"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2008-01-15T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "ngIRCd 0.10.x before 0.10.4 and 0.11.0 before 0.11.0-pre2 allows remote attackers to cause a denial of service (crash) via crafted IRC PART message, which triggers an invalid dereference."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2008-01-19T10:00:00.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://ngircd.barton.de/doc/ChangeLog"
},
{
"name": "28673",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/28673"
},
{
"name": "28425",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/28425"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://arthur.barton.de/cgi-bin/viewcvs.cgi/ngircd/ngircd/src/ngircd/irc-channel.c?r1=1.40\u0026r2=1.41\u0026diff_format=h"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://bugs.gentoo.org/show_bug.cgi?id=204834"
},
{
"name": "27318",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/27318"
},
{
"name": "GLSA-200801-13",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "http://security.gentoo.org/glsa/glsa-200801-13.xml"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2008-0285",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "ngIRCd 0.10.x before 0.10.4 and 0.11.0 before 0.11.0-pre2 allows remote attackers to cause a denial of service (crash) via crafted IRC PART message, which triggers an invalid dereference."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://ngircd.barton.de/doc/ChangeLog",
"refsource": "CONFIRM",
"url": "http://ngircd.barton.de/doc/ChangeLog"
},
{
"name": "28673",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/28673"
},
{
"name": "28425",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/28425"
},
{
"name": "http://arthur.barton.de/cgi-bin/viewcvs.cgi/ngircd/ngircd/src/ngircd/irc-channel.c?r1=1.40\u0026r2=1.41\u0026diff_format=h",
"refsource": "MISC",
"url": "http://arthur.barton.de/cgi-bin/viewcvs.cgi/ngircd/ngircd/src/ngircd/irc-channel.c?r1=1.40\u0026r2=1.41\u0026diff_format=h"
},
{
"name": "http://bugs.gentoo.org/show_bug.cgi?id=204834",
"refsource": "CONFIRM",
"url": "http://bugs.gentoo.org/show_bug.cgi?id=204834"
},
{
"name": "27318",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/27318"
},
{
"name": "GLSA-200801-13",
"refsource": "GENTOO",
"url": "http://security.gentoo.org/glsa/glsa-200801-13.xml"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2008-0285",
"datePublished": "2008-01-15T23:00:00.000Z",
"dateReserved": "2008-01-15T00:00:00.000Z",
"dateUpdated": "2024-08-07T07:39:35.057Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2007-6062 (GCVE-0-2007-6062)
Vulnerability from nvd – Published: 2007-11-20 23:00 – Updated: 2024-08-07 15:54
VLAI
EPSS
VEX
Summary
irc-channel.c in ngIRCd before 0.10.3 allows remote attackers to cause a denial of service (crash) via a JOIN command without a channel argument.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
7 references
| URL | Tags |
|---|---|
| http://ngircd.barton.de/doc/ChangeLog | x_refsource_CONFIRM |
| http://www.securityfocus.com/bid/26489 | vdb-entryx_refsource_BID |
| http://osvdb.org/39295 | vdb-entryx_refsource_OSVDB |
| http://arthur.barton.de/pipermail/ngircd-ml/2007-… | mailing-listx_refsource_MLIST |
| http://bugs.debian.org/cgi-bin/bugreport.cgi?msg=… | x_refsource_MISC |
| http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=451875 | x_refsource_CONFIRM |
| http://secunia.com/advisories/27692 | third-party-advisoryx_refsource_SECUNIA |
Date Public
2007-07-31 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T15:54:26.386Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://ngircd.barton.de/doc/ChangeLog"
},
{
"name": "26489",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/26489"
},
{
"name": "39295",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://osvdb.org/39295"
},
{
"name": "[ngIRCd-ML] 20070731 ngIRCd 0.10.3 - Security",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://arthur.barton.de/pipermail/ngircd-ml/2007-July/000292.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?msg=10%3Bfilename=90-remote-vulnerability.dpatch%3Batt=1%3Bbug=451875"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=451875"
},
{
"name": "27692",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/27692"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2007-07-31T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "irc-channel.c in ngIRCd before 0.10.3 allows remote attackers to cause a denial of service (crash) via a JOIN command without a channel argument."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2008-11-15T10:00:00.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://ngircd.barton.de/doc/ChangeLog"
},
{
"name": "26489",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/26489"
},
{
"name": "39295",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://osvdb.org/39295"
},
{
"name": "[ngIRCd-ML] 20070731 ngIRCd 0.10.3 - Security",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://arthur.barton.de/pipermail/ngircd-ml/2007-July/000292.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?msg=10%3Bfilename=90-remote-vulnerability.dpatch%3Batt=1%3Bbug=451875"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=451875"
},
{
"name": "27692",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/27692"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2007-6062",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "irc-channel.c in ngIRCd before 0.10.3 allows remote attackers to cause a denial of service (crash) via a JOIN command without a channel argument."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://ngircd.barton.de/doc/ChangeLog",
"refsource": "CONFIRM",
"url": "http://ngircd.barton.de/doc/ChangeLog"
},
{
"name": "26489",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/26489"
},
{
"name": "39295",
"refsource": "OSVDB",
"url": "http://osvdb.org/39295"
},
{
"name": "[ngIRCd-ML] 20070731 ngIRCd 0.10.3 - Security",
"refsource": "MLIST",
"url": "http://arthur.barton.de/pipermail/ngircd-ml/2007-July/000292.html"
},
{
"name": "http://bugs.debian.org/cgi-bin/bugreport.cgi?msg=10;filename=90-remote-vulnerability.dpatch;att=1;bug=451875",
"refsource": "MISC",
"url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?msg=10;filename=90-remote-vulnerability.dpatch;att=1;bug=451875"
},
{
"name": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=451875",
"refsource": "CONFIRM",
"url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=451875"
},
{
"name": "27692",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/27692"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2007-6062",
"datePublished": "2007-11-20T23:00:00.000Z",
"dateReserved": "2007-11-20T00:00:00.000Z",
"dateUpdated": "2024-08-07T15:54:26.386Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2005-0199 (GCVE-0-2005-0199)
Vulnerability from nvd – Published: 2005-02-06 05:00 – Updated: 2024-08-07 21:05
VLAI
EPSS
VEX
Summary
Integer underflow in the Lists_MakeMask() function in lists.c in ngIRCd before 0.8.2 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long MODE line that causes an incorrect length calculation, which leads to a buffer overflow.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
8 references
| URL | Tags |
|---|---|
| http://arthur.ath.cx/pipermail/ngircd-ml/2005-Jan… | mailing-listx_refsource_MLIST |
| http://securitytracker.com/id?1013047 | vdb-entryx_refsource_SECTRACK |
| http://secunia.com/advisories/14056 | third-party-advisoryx_refsource_SECUNIA |
| https://exchange.xforce.ibmcloud.com/vulnerabilit… | vdb-entryx_refsource_XF |
| http://www.gentoo.org/security/en/glsa/glsa-20050… | vendor-advisoryx_refsource_GENTOO |
| http://secunia.com/advisories/14059 | third-party-advisoryx_refsource_SECUNIA |
| http://bugs.gentoo.org/show_bug.cgi?id=79705 | x_refsource_CONFIRM |
| http://www.securityfocus.com/bid/12397 | vdb-entryx_refsource_BID |
Date Public
2005-01-26 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T21:05:25.254Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "[ngIRCd-ML] 20050126 ngIRCd 0.8.2",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://arthur.ath.cx/pipermail/ngircd-ml/2005-January/000228.html"
},
{
"name": "1013047",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://securitytracker.com/id?1013047"
},
{
"name": "14056",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/14056"
},
{
"name": "ngircd-listmakemask-bo(19143)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/19143"
},
{
"name": "GLSA-200501-40",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "http://www.gentoo.org/security/en/glsa/glsa-200501-40.xml"
},
{
"name": "14059",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/14059"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://bugs.gentoo.org/show_bug.cgi?id=79705"
},
{
"name": "12397",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/12397"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2005-01-26T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Integer underflow in the Lists_MakeMask() function in lists.c in ngIRCd before 0.8.2 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long MODE line that causes an incorrect length calculation, which leads to a buffer overflow."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-07-10T14:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "[ngIRCd-ML] 20050126 ngIRCd 0.8.2",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://arthur.ath.cx/pipermail/ngircd-ml/2005-January/000228.html"
},
{
"name": "1013047",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://securitytracker.com/id?1013047"
},
{
"name": "14056",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/14056"
},
{
"name": "ngircd-listmakemask-bo(19143)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/19143"
},
{
"name": "GLSA-200501-40",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "http://www.gentoo.org/security/en/glsa/glsa-200501-40.xml"
},
{
"name": "14059",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/14059"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://bugs.gentoo.org/show_bug.cgi?id=79705"
},
{
"name": "12397",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/12397"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2005-0199",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Integer underflow in the Lists_MakeMask() function in lists.c in ngIRCd before 0.8.2 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long MODE line that causes an incorrect length calculation, which leads to a buffer overflow."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "[ngIRCd-ML] 20050126 ngIRCd 0.8.2",
"refsource": "MLIST",
"url": "http://arthur.ath.cx/pipermail/ngircd-ml/2005-January/000228.html"
},
{
"name": "1013047",
"refsource": "SECTRACK",
"url": "http://securitytracker.com/id?1013047"
},
{
"name": "14056",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/14056"
},
{
"name": "ngircd-listmakemask-bo(19143)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/19143"
},
{
"name": "GLSA-200501-40",
"refsource": "GENTOO",
"url": "http://www.gentoo.org/security/en/glsa/glsa-200501-40.xml"
},
{
"name": "14059",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/14059"
},
{
"name": "http://bugs.gentoo.org/show_bug.cgi?id=79705",
"refsource": "CONFIRM",
"url": "http://bugs.gentoo.org/show_bug.cgi?id=79705"
},
{
"name": "12397",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/12397"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2005-0199",
"datePublished": "2005-02-06T05:00:00.000Z",
"dateReserved": "2005-01-31T00:00:00.000Z",
"dateUpdated": "2024-08-07T21:05:25.254Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2005-0226 (GCVE-0-2005-0226)
Vulnerability from nvd – Published: 2005-02-06 05:00 – Updated: 2024-08-07 21:05
VLAI
EPSS
VEX
Summary
Format string vulnerability in the Log_Resolver function in log.c for ngIRCd 0.8.2 and earlier, when compiled with IDENT, logging to SYSLOG, and with DEBUG enabled, allows remote attackers to execute arbitrary code.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
4 references
| URL | Tags |
|---|---|
| http://marc.info/?l=bugtraq&m=110746413108183&w=2 | mailing-listx_refsource_BUGTRAQ |
| http://secunia.com/advisories/14114/ | third-party-advisoryx_refsource_SECUNIA |
| http://www.nosystem.com.ar/advisories/advisory-11.txt | x_refsource_MISC |
| http://www.securityfocus.com/bid/12434 | vdb-entryx_refsource_BID |
Date Public
2005-02-03 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T21:05:25.117Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "20050203 ngIRCd \u003c= v0.8.2 Format String Vulnerability",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=110746413108183\u0026w=2"
},
{
"name": "14114",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/14114/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.nosystem.com.ar/advisories/advisory-11.txt"
},
{
"name": "12434",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/12434"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2005-02-03T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Format string vulnerability in the Log_Resolver function in log.c for ngIRCd 0.8.2 and earlier, when compiled with IDENT, logging to SYSLOG, and with DEBUG enabled, allows remote attackers to execute arbitrary code."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2016-10-17T13:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "20050203 ngIRCd \u003c= v0.8.2 Format String Vulnerability",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://marc.info/?l=bugtraq\u0026m=110746413108183\u0026w=2"
},
{
"name": "14114",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/14114/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.nosystem.com.ar/advisories/advisory-11.txt"
},
{
"name": "12434",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/12434"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2005-0226",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Format string vulnerability in the Log_Resolver function in log.c for ngIRCd 0.8.2 and earlier, when compiled with IDENT, logging to SYSLOG, and with DEBUG enabled, allows remote attackers to execute arbitrary code."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "20050203 ngIRCd \u003c= v0.8.2 Format String Vulnerability",
"refsource": "BUGTRAQ",
"url": "http://marc.info/?l=bugtraq\u0026m=110746413108183\u0026w=2"
},
{
"name": "14114",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/14114/"
},
{
"name": "http://www.nosystem.com.ar/advisories/advisory-11.txt",
"refsource": "MISC",
"url": "http://www.nosystem.com.ar/advisories/advisory-11.txt"
},
{
"name": "12434",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/12434"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2005-0226",
"datePublished": "2005-02-06T05:00:00.000Z",
"dateReserved": "2005-02-05T00:00:00.000Z",
"dateUpdated": "2024-08-07T21:05:25.117Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2013-1747 (GCVE-0-2013-1747)
Vulnerability from cvelistv5 – Published: 2013-03-28 23:00 – Updated: 2024-08-06 15:13
VLAI
EPSS
VEX
Summary
channel.c in ngIRCd 20 and 20.1 allows remote attackers to cause a denial of service (assertion failure and crash) via a KICK command for a user who is not on the associated channel.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
7 references
| URL | Tags |
|---|---|
| http://www.osvdb.com/show/osvdb/91836 | vdb-entryx_refsource_OSVDB |
| http://lists.fedoraproject.org/pipermail/package-… | vendor-advisoryx_refsource_FEDORA |
| http://arthur.barton.de/pipermail/ngircd-ml/2013-… | mailing-listx_refsource_MLIST |
| https://arthur.barton.de/cgi-bin/gitweb.cgi?p=ngi… | x_refsource_MISC |
| http://ngircd.barton.de/doc/NEWS | x_refsource_CONFIRM |
| http://secunia.com/advisories/52982 | third-party-advisoryx_refsource_SECUNIA |
| http://arthur.barton.de/pipermail/ngircd-ml/2013-… | mailing-listx_refsource_MLIST |
Date Public
2013-02-15 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T15:13:32.520Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "91836",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://www.osvdb.com/show/osvdb/91836"
},
{
"name": "FEDORA-2013-4593",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2013-April/101706.html"
},
{
"name": "[ngIRCd-ML] 20130217 ngIRCd 20.2",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://arthur.barton.de/pipermail/ngircd-ml/2013-February/000625.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://arthur.barton.de/cgi-bin/gitweb.cgi?p=ngircd.git%3Bh=0e63fb3fa7ac4ca048e8c2b648d2be3fd0572311"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://ngircd.barton.de/doc/NEWS"
},
{
"name": "52982",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/52982"
},
{
"name": "[ngIRCd-ML] 20130215 ngIRCd 20.2",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://arthur.barton.de/pipermail/ngircd-ml/2013-February/000623.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2013-02-15T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "channel.c in ngIRCd 20 and 20.1 allows remote attackers to cause a denial of service (assertion failure and crash) via a KICK command for a user who is not on the associated channel."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2013-12-01T17:26:34.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "91836",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://www.osvdb.com/show/osvdb/91836"
},
{
"name": "FEDORA-2013-4593",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2013-April/101706.html"
},
{
"name": "[ngIRCd-ML] 20130217 ngIRCd 20.2",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://arthur.barton.de/pipermail/ngircd-ml/2013-February/000625.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://arthur.barton.de/cgi-bin/gitweb.cgi?p=ngircd.git%3Bh=0e63fb3fa7ac4ca048e8c2b648d2be3fd0572311"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://ngircd.barton.de/doc/NEWS"
},
{
"name": "52982",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/52982"
},
{
"name": "[ngIRCd-ML] 20130215 ngIRCd 20.2",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://arthur.barton.de/pipermail/ngircd-ml/2013-February/000623.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2013-1747",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "channel.c in ngIRCd 20 and 20.1 allows remote attackers to cause a denial of service (assertion failure and crash) via a KICK command for a user who is not on the associated channel."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "91836",
"refsource": "OSVDB",
"url": "http://www.osvdb.com/show/osvdb/91836"
},
{
"name": "FEDORA-2013-4593",
"refsource": "FEDORA",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2013-April/101706.html"
},
{
"name": "[ngIRCd-ML] 20130217 ngIRCd 20.2",
"refsource": "MLIST",
"url": "http://arthur.barton.de/pipermail/ngircd-ml/2013-February/000625.html"
},
{
"name": "https://arthur.barton.de/cgi-bin/gitweb.cgi?p=ngircd.git;h=0e63fb3fa7ac4ca048e8c2b648d2be3fd0572311",
"refsource": "MISC",
"url": "https://arthur.barton.de/cgi-bin/gitweb.cgi?p=ngircd.git;h=0e63fb3fa7ac4ca048e8c2b648d2be3fd0572311"
},
{
"name": "http://ngircd.barton.de/doc/NEWS",
"refsource": "CONFIRM",
"url": "http://ngircd.barton.de/doc/NEWS"
},
{
"name": "52982",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/52982"
},
{
"name": "[ngIRCd-ML] 20130215 ngIRCd 20.2",
"refsource": "MLIST",
"url": "http://arthur.barton.de/pipermail/ngircd-ml/2013-February/000623.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2013-1747",
"datePublished": "2013-03-28T23:00:00.000Z",
"dateReserved": "2013-02-15T00:00:00.000Z",
"dateUpdated": "2024-08-06T15:13:32.520Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2009-4652 (GCVE-0-2009-4652)
Vulnerability from cvelistv5 – Published: 2010-02-26 18:09 – Updated: 2024-08-07 07:08
VLAI
EPSS
VEX
Summary
The (1) Conn_GetCipherInfo and (2) Conn_UsesSSL functions in src/ngircd/conn.c in ngIRCd 13 and 14, when SSL/TLS support is present and standalone mode is disabled, allow remote attackers to cause a denial of service (application crash) by sending the MOTD command from another server in the same IRC network, possibly related to an array index error.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
8 references
| URL | Tags |
|---|---|
| http://arthur.barton.de/cgi-bin/gitweb.cgi?p=ngir… | x_refsource_MISC |
| http://ngircd.barton.de/doc/ChangeLog | x_refsource_CONFIRM |
| http://arthur.barton.de/cgi-bin/gitweb.cgi?p=ngir… | x_refsource_CONFIRM |
| http://www.securityfocus.com/bid/37021 | vdb-entryx_refsource_BID |
| http://www.vupen.com/english/advisories/2009/3240 | vdb-entryx_refsource_VUPEN |
| http://secunia.com/advisories/37343 | third-party-advisoryx_refsource_SECUNIA |
| http://ngircd.barton.de/doc/NEWS | x_refsource_CONFIRM |
| https://exchange.xforce.ibmcloud.com/vulnerabilit… | vdb-entryx_refsource_XF |
Date Public
2009-05-05 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T07:08:37.994Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://arthur.barton.de/cgi-bin/gitweb.cgi?p=ngircd.git%3Ba=blobdiff%3Bf=src/ngircd/conn.c%3Bh=c6095a31c613bc5ca127d55b8723e15b836f1cca%3Bhp=9752a6191c7e2da5b0df64779e9cc28ad1e6241c%3Bhb=627b0b713c52406e50c84bb9459e7794262920a2%3Bhpb=95428a72ffb5214826b61d5e77f860e7ef6a6c9e"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://ngircd.barton.de/doc/ChangeLog"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://arthur.barton.de/cgi-bin/gitweb.cgi?p=ngircd.git%3Ba=commit%3Bh=627b0b713c52406e50c84bb9459e7794262920a2"
},
{
"name": "37021",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/37021"
},
{
"name": "ADV-2009-3240",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2009/3240"
},
{
"name": "37343",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/37343"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://ngircd.barton.de/doc/NEWS"
},
{
"name": "ngircd-ssltls-dos(54272)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/54272"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2009-05-05T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "The (1) Conn_GetCipherInfo and (2) Conn_UsesSSL functions in src/ngircd/conn.c in ngIRCd 13 and 14, when SSL/TLS support is present and standalone mode is disabled, allow remote attackers to cause a denial of service (application crash) by sending the MOTD command from another server in the same IRC network, possibly related to an array index error."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-08-16T14:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "http://arthur.barton.de/cgi-bin/gitweb.cgi?p=ngircd.git%3Ba=blobdiff%3Bf=src/ngircd/conn.c%3Bh=c6095a31c613bc5ca127d55b8723e15b836f1cca%3Bhp=9752a6191c7e2da5b0df64779e9cc28ad1e6241c%3Bhb=627b0b713c52406e50c84bb9459e7794262920a2%3Bhpb=95428a72ffb5214826b61d5e77f860e7ef6a6c9e"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://ngircd.barton.de/doc/ChangeLog"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://arthur.barton.de/cgi-bin/gitweb.cgi?p=ngircd.git%3Ba=commit%3Bh=627b0b713c52406e50c84bb9459e7794262920a2"
},
{
"name": "37021",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/37021"
},
{
"name": "ADV-2009-3240",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2009/3240"
},
{
"name": "37343",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/37343"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://ngircd.barton.de/doc/NEWS"
},
{
"name": "ngircd-ssltls-dos(54272)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/54272"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2009-4652",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The (1) Conn_GetCipherInfo and (2) Conn_UsesSSL functions in src/ngircd/conn.c in ngIRCd 13 and 14, when SSL/TLS support is present and standalone mode is disabled, allow remote attackers to cause a denial of service (application crash) by sending the MOTD command from another server in the same IRC network, possibly related to an array index error."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://arthur.barton.de/cgi-bin/gitweb.cgi?p=ngircd.git;a=blobdiff;f=src/ngircd/conn.c;h=c6095a31c613bc5ca127d55b8723e15b836f1cca;hp=9752a6191c7e2da5b0df64779e9cc28ad1e6241c;hb=627b0b713c52406e50c84bb9459e7794262920a2;hpb=95428a72ffb5214826b61d5e77f860e7ef6a6c9e",
"refsource": "MISC",
"url": "http://arthur.barton.de/cgi-bin/gitweb.cgi?p=ngircd.git;a=blobdiff;f=src/ngircd/conn.c;h=c6095a31c613bc5ca127d55b8723e15b836f1cca;hp=9752a6191c7e2da5b0df64779e9cc28ad1e6241c;hb=627b0b713c52406e50c84bb9459e7794262920a2;hpb=95428a72ffb5214826b61d5e77f860e7ef6a6c9e"
},
{
"name": "http://ngircd.barton.de/doc/ChangeLog",
"refsource": "CONFIRM",
"url": "http://ngircd.barton.de/doc/ChangeLog"
},
{
"name": "http://arthur.barton.de/cgi-bin/gitweb.cgi?p=ngircd.git;a=commit;h=627b0b713c52406e50c84bb9459e7794262920a2",
"refsource": "CONFIRM",
"url": "http://arthur.barton.de/cgi-bin/gitweb.cgi?p=ngircd.git;a=commit;h=627b0b713c52406e50c84bb9459e7794262920a2"
},
{
"name": "37021",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/37021"
},
{
"name": "ADV-2009-3240",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2009/3240"
},
{
"name": "37343",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/37343"
},
{
"name": "http://ngircd.barton.de/doc/NEWS",
"refsource": "CONFIRM",
"url": "http://ngircd.barton.de/doc/NEWS"
},
{
"name": "ngircd-ssltls-dos(54272)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/54272"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2009-4652",
"datePublished": "2010-02-26T18:09:00.000Z",
"dateReserved": "2010-02-26T00:00:00.000Z",
"dateUpdated": "2024-08-07T07:08:37.994Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2008-0285 (GCVE-0-2008-0285)
Vulnerability from cvelistv5 – Published: 2008-01-15 23:00 – Updated: 2024-08-07 07:39
VLAI
EPSS
VEX
Summary
ngIRCd 0.10.x before 0.10.4 and 0.11.0 before 0.11.0-pre2 allows remote attackers to cause a denial of service (crash) via crafted IRC PART message, which triggers an invalid dereference.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
7 references
| URL | Tags |
|---|---|
| http://ngircd.barton.de/doc/ChangeLog | x_refsource_CONFIRM |
| http://secunia.com/advisories/28673 | third-party-advisoryx_refsource_SECUNIA |
| http://secunia.com/advisories/28425 | third-party-advisoryx_refsource_SECUNIA |
| http://arthur.barton.de/cgi-bin/viewcvs.cgi/ngirc… | x_refsource_MISC |
| http://bugs.gentoo.org/show_bug.cgi?id=204834 | x_refsource_CONFIRM |
| http://www.securityfocus.com/bid/27318 | vdb-entryx_refsource_BID |
| http://security.gentoo.org/glsa/glsa-200801-13.xml | vendor-advisoryx_refsource_GENTOO |
Date Public
2008-01-15 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T07:39:35.057Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://ngircd.barton.de/doc/ChangeLog"
},
{
"name": "28673",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/28673"
},
{
"name": "28425",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/28425"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://arthur.barton.de/cgi-bin/viewcvs.cgi/ngircd/ngircd/src/ngircd/irc-channel.c?r1=1.40\u0026r2=1.41\u0026diff_format=h"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://bugs.gentoo.org/show_bug.cgi?id=204834"
},
{
"name": "27318",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/27318"
},
{
"name": "GLSA-200801-13",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "http://security.gentoo.org/glsa/glsa-200801-13.xml"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2008-01-15T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "ngIRCd 0.10.x before 0.10.4 and 0.11.0 before 0.11.0-pre2 allows remote attackers to cause a denial of service (crash) via crafted IRC PART message, which triggers an invalid dereference."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2008-01-19T10:00:00.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://ngircd.barton.de/doc/ChangeLog"
},
{
"name": "28673",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/28673"
},
{
"name": "28425",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/28425"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://arthur.barton.de/cgi-bin/viewcvs.cgi/ngircd/ngircd/src/ngircd/irc-channel.c?r1=1.40\u0026r2=1.41\u0026diff_format=h"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://bugs.gentoo.org/show_bug.cgi?id=204834"
},
{
"name": "27318",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/27318"
},
{
"name": "GLSA-200801-13",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "http://security.gentoo.org/glsa/glsa-200801-13.xml"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2008-0285",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "ngIRCd 0.10.x before 0.10.4 and 0.11.0 before 0.11.0-pre2 allows remote attackers to cause a denial of service (crash) via crafted IRC PART message, which triggers an invalid dereference."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://ngircd.barton.de/doc/ChangeLog",
"refsource": "CONFIRM",
"url": "http://ngircd.barton.de/doc/ChangeLog"
},
{
"name": "28673",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/28673"
},
{
"name": "28425",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/28425"
},
{
"name": "http://arthur.barton.de/cgi-bin/viewcvs.cgi/ngircd/ngircd/src/ngircd/irc-channel.c?r1=1.40\u0026r2=1.41\u0026diff_format=h",
"refsource": "MISC",
"url": "http://arthur.barton.de/cgi-bin/viewcvs.cgi/ngircd/ngircd/src/ngircd/irc-channel.c?r1=1.40\u0026r2=1.41\u0026diff_format=h"
},
{
"name": "http://bugs.gentoo.org/show_bug.cgi?id=204834",
"refsource": "CONFIRM",
"url": "http://bugs.gentoo.org/show_bug.cgi?id=204834"
},
{
"name": "27318",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/27318"
},
{
"name": "GLSA-200801-13",
"refsource": "GENTOO",
"url": "http://security.gentoo.org/glsa/glsa-200801-13.xml"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2008-0285",
"datePublished": "2008-01-15T23:00:00.000Z",
"dateReserved": "2008-01-15T00:00:00.000Z",
"dateUpdated": "2024-08-07T07:39:35.057Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2007-6062 (GCVE-0-2007-6062)
Vulnerability from cvelistv5 – Published: 2007-11-20 23:00 – Updated: 2024-08-07 15:54
VLAI
EPSS
VEX
Summary
irc-channel.c in ngIRCd before 0.10.3 allows remote attackers to cause a denial of service (crash) via a JOIN command without a channel argument.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
7 references
| URL | Tags |
|---|---|
| http://ngircd.barton.de/doc/ChangeLog | x_refsource_CONFIRM |
| http://www.securityfocus.com/bid/26489 | vdb-entryx_refsource_BID |
| http://osvdb.org/39295 | vdb-entryx_refsource_OSVDB |
| http://arthur.barton.de/pipermail/ngircd-ml/2007-… | mailing-listx_refsource_MLIST |
| http://bugs.debian.org/cgi-bin/bugreport.cgi?msg=… | x_refsource_MISC |
| http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=451875 | x_refsource_CONFIRM |
| http://secunia.com/advisories/27692 | third-party-advisoryx_refsource_SECUNIA |
Date Public
2007-07-31 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T15:54:26.386Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://ngircd.barton.de/doc/ChangeLog"
},
{
"name": "26489",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/26489"
},
{
"name": "39295",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://osvdb.org/39295"
},
{
"name": "[ngIRCd-ML] 20070731 ngIRCd 0.10.3 - Security",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://arthur.barton.de/pipermail/ngircd-ml/2007-July/000292.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?msg=10%3Bfilename=90-remote-vulnerability.dpatch%3Batt=1%3Bbug=451875"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=451875"
},
{
"name": "27692",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/27692"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2007-07-31T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "irc-channel.c in ngIRCd before 0.10.3 allows remote attackers to cause a denial of service (crash) via a JOIN command without a channel argument."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2008-11-15T10:00:00.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://ngircd.barton.de/doc/ChangeLog"
},
{
"name": "26489",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/26489"
},
{
"name": "39295",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://osvdb.org/39295"
},
{
"name": "[ngIRCd-ML] 20070731 ngIRCd 0.10.3 - Security",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://arthur.barton.de/pipermail/ngircd-ml/2007-July/000292.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?msg=10%3Bfilename=90-remote-vulnerability.dpatch%3Batt=1%3Bbug=451875"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=451875"
},
{
"name": "27692",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/27692"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2007-6062",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "irc-channel.c in ngIRCd before 0.10.3 allows remote attackers to cause a denial of service (crash) via a JOIN command without a channel argument."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://ngircd.barton.de/doc/ChangeLog",
"refsource": "CONFIRM",
"url": "http://ngircd.barton.de/doc/ChangeLog"
},
{
"name": "26489",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/26489"
},
{
"name": "39295",
"refsource": "OSVDB",
"url": "http://osvdb.org/39295"
},
{
"name": "[ngIRCd-ML] 20070731 ngIRCd 0.10.3 - Security",
"refsource": "MLIST",
"url": "http://arthur.barton.de/pipermail/ngircd-ml/2007-July/000292.html"
},
{
"name": "http://bugs.debian.org/cgi-bin/bugreport.cgi?msg=10;filename=90-remote-vulnerability.dpatch;att=1;bug=451875",
"refsource": "MISC",
"url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?msg=10;filename=90-remote-vulnerability.dpatch;att=1;bug=451875"
},
{
"name": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=451875",
"refsource": "CONFIRM",
"url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=451875"
},
{
"name": "27692",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/27692"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2007-6062",
"datePublished": "2007-11-20T23:00:00.000Z",
"dateReserved": "2007-11-20T00:00:00.000Z",
"dateUpdated": "2024-08-07T15:54:26.386Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2005-0226 (GCVE-0-2005-0226)
Vulnerability from cvelistv5 – Published: 2005-02-06 05:00 – Updated: 2024-08-07 21:05
VLAI
EPSS
VEX
Summary
Format string vulnerability in the Log_Resolver function in log.c for ngIRCd 0.8.2 and earlier, when compiled with IDENT, logging to SYSLOG, and with DEBUG enabled, allows remote attackers to execute arbitrary code.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
4 references
| URL | Tags |
|---|---|
| http://marc.info/?l=bugtraq&m=110746413108183&w=2 | mailing-listx_refsource_BUGTRAQ |
| http://secunia.com/advisories/14114/ | third-party-advisoryx_refsource_SECUNIA |
| http://www.nosystem.com.ar/advisories/advisory-11.txt | x_refsource_MISC |
| http://www.securityfocus.com/bid/12434 | vdb-entryx_refsource_BID |
Date Public
2005-02-03 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T21:05:25.117Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "20050203 ngIRCd \u003c= v0.8.2 Format String Vulnerability",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=110746413108183\u0026w=2"
},
{
"name": "14114",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/14114/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.nosystem.com.ar/advisories/advisory-11.txt"
},
{
"name": "12434",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/12434"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2005-02-03T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Format string vulnerability in the Log_Resolver function in log.c for ngIRCd 0.8.2 and earlier, when compiled with IDENT, logging to SYSLOG, and with DEBUG enabled, allows remote attackers to execute arbitrary code."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2016-10-17T13:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "20050203 ngIRCd \u003c= v0.8.2 Format String Vulnerability",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://marc.info/?l=bugtraq\u0026m=110746413108183\u0026w=2"
},
{
"name": "14114",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/14114/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.nosystem.com.ar/advisories/advisory-11.txt"
},
{
"name": "12434",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/12434"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2005-0226",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Format string vulnerability in the Log_Resolver function in log.c for ngIRCd 0.8.2 and earlier, when compiled with IDENT, logging to SYSLOG, and with DEBUG enabled, allows remote attackers to execute arbitrary code."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "20050203 ngIRCd \u003c= v0.8.2 Format String Vulnerability",
"refsource": "BUGTRAQ",
"url": "http://marc.info/?l=bugtraq\u0026m=110746413108183\u0026w=2"
},
{
"name": "14114",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/14114/"
},
{
"name": "http://www.nosystem.com.ar/advisories/advisory-11.txt",
"refsource": "MISC",
"url": "http://www.nosystem.com.ar/advisories/advisory-11.txt"
},
{
"name": "12434",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/12434"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2005-0226",
"datePublished": "2005-02-06T05:00:00.000Z",
"dateReserved": "2005-02-05T00:00:00.000Z",
"dateUpdated": "2024-08-07T21:05:25.117Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2005-0199 (GCVE-0-2005-0199)
Vulnerability from cvelistv5 – Published: 2005-02-06 05:00 – Updated: 2024-08-07 21:05
VLAI
EPSS
VEX
Summary
Integer underflow in the Lists_MakeMask() function in lists.c in ngIRCd before 0.8.2 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long MODE line that causes an incorrect length calculation, which leads to a buffer overflow.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
8 references
| URL | Tags |
|---|---|
| http://arthur.ath.cx/pipermail/ngircd-ml/2005-Jan… | mailing-listx_refsource_MLIST |
| http://securitytracker.com/id?1013047 | vdb-entryx_refsource_SECTRACK |
| http://secunia.com/advisories/14056 | third-party-advisoryx_refsource_SECUNIA |
| https://exchange.xforce.ibmcloud.com/vulnerabilit… | vdb-entryx_refsource_XF |
| http://www.gentoo.org/security/en/glsa/glsa-20050… | vendor-advisoryx_refsource_GENTOO |
| http://secunia.com/advisories/14059 | third-party-advisoryx_refsource_SECUNIA |
| http://bugs.gentoo.org/show_bug.cgi?id=79705 | x_refsource_CONFIRM |
| http://www.securityfocus.com/bid/12397 | vdb-entryx_refsource_BID |
Date Public
2005-01-26 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T21:05:25.254Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "[ngIRCd-ML] 20050126 ngIRCd 0.8.2",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://arthur.ath.cx/pipermail/ngircd-ml/2005-January/000228.html"
},
{
"name": "1013047",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://securitytracker.com/id?1013047"
},
{
"name": "14056",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/14056"
},
{
"name": "ngircd-listmakemask-bo(19143)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/19143"
},
{
"name": "GLSA-200501-40",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "http://www.gentoo.org/security/en/glsa/glsa-200501-40.xml"
},
{
"name": "14059",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/14059"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://bugs.gentoo.org/show_bug.cgi?id=79705"
},
{
"name": "12397",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/12397"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2005-01-26T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Integer underflow in the Lists_MakeMask() function in lists.c in ngIRCd before 0.8.2 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long MODE line that causes an incorrect length calculation, which leads to a buffer overflow."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-07-10T14:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "[ngIRCd-ML] 20050126 ngIRCd 0.8.2",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://arthur.ath.cx/pipermail/ngircd-ml/2005-January/000228.html"
},
{
"name": "1013047",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://securitytracker.com/id?1013047"
},
{
"name": "14056",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/14056"
},
{
"name": "ngircd-listmakemask-bo(19143)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/19143"
},
{
"name": "GLSA-200501-40",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "http://www.gentoo.org/security/en/glsa/glsa-200501-40.xml"
},
{
"name": "14059",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/14059"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://bugs.gentoo.org/show_bug.cgi?id=79705"
},
{
"name": "12397",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/12397"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2005-0199",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Integer underflow in the Lists_MakeMask() function in lists.c in ngIRCd before 0.8.2 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long MODE line that causes an incorrect length calculation, which leads to a buffer overflow."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "[ngIRCd-ML] 20050126 ngIRCd 0.8.2",
"refsource": "MLIST",
"url": "http://arthur.ath.cx/pipermail/ngircd-ml/2005-January/000228.html"
},
{
"name": "1013047",
"refsource": "SECTRACK",
"url": "http://securitytracker.com/id?1013047"
},
{
"name": "14056",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/14056"
},
{
"name": "ngircd-listmakemask-bo(19143)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/19143"
},
{
"name": "GLSA-200501-40",
"refsource": "GENTOO",
"url": "http://www.gentoo.org/security/en/glsa/glsa-200501-40.xml"
},
{
"name": "14059",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/14059"
},
{
"name": "http://bugs.gentoo.org/show_bug.cgi?id=79705",
"refsource": "CONFIRM",
"url": "http://bugs.gentoo.org/show_bug.cgi?id=79705"
},
{
"name": "12397",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/12397"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2005-0199",
"datePublished": "2005-02-06T05:00:00.000Z",
"dateReserved": "2005-01-31T00:00:00.000Z",
"dateUpdated": "2024-08-07T21:05:25.254Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}