Lucene search
HistoryDec 19, 2014 - 3:59 p.m.
CVE-2014-9403
CVSS2
4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
AI Score
6
Confidence
High
EPSS
0.006
Percentile
79.1%
The CWebAdminMod::ChanPage function in modules/webadmin.cpp in ZNC before 1.4 allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) by adding a channel with the same name as an existing channel but without the leading # character, related to a “use-after-delete” error.
Affected configurations
Node
znczncRange≤1.2
Related
openvas
openvas
ZNC < 1.4 DoS Vulnerability
2015-08-29 00:00:00
Mageia: Security Advisory (MGASA-2014-0543)
2022-01-28 00:00:00
Gentoo Security Advisory GLSA 201412-31
2015-09-29 00:00:00
ubuntucve
ubuntucve
CVE-2014-9403
2014-12-19 00:00:00
debiancve
debiancve
CVE-2014-9403
2014-12-19 15:59:32
nessus
nessus
openSUSE Security Update : znc (openSUSE-2015-845)
2015-12-02 00:00:00
GLSA-201412-31 : ZNC: Denial of Service
2014-12-19 00:00:00
Mandriva Linux Security Advisory : znc (MDVSA-2015:013)
2015-01-09 00:00:00
mageia
mageia
Updated znc package fixes CVE-2014-9403
2014-12-21 23:47:32
prion
prion
Null pointer dereference
2014-12-19 15:59:00
cve
cve
CVE-2014-9403
2014-12-19 15:59:32
cvelist
cvelist
CVE-2014-9403
2014-12-19 15:00:00
securityvulns
securityvulns
Multiple znc security vulnerabilities
2015-01-13 00:00:00
[ MDVSA-2015:013 ] znc
2015-01-13 00:00:00
gentoo
gentoo
ZNC: Denial of service
2014-12-19 00:00:00
CVSS2
4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
AI Score
6
Confidence
High
EPSS
0.006
Percentile
79.1%
Related for NVD:CVE-2014-9403