CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
Confidence
High
EPSS
Percentile
79.4%
Open Projects Network Internet Relay Chat (IRC) daemon u2.10.05.18 does not perform a double-reverse DNS lookup, which allows remote attackers to spoof any valid hostname on the Internet. NOTE: a followup post suggests that this is not an issue in the daemon.
Vendor | Product | Version | CPE |
---|---|---|---|
open_projects_network | open_projects_network_ircd | u2.10.05.18 | cpe:2.3:a:open_projects_network:open_projects_network_ircd:u2.10.05.18:*:*:*:*:*:*:* |