Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2010 Greenbone AGOPENVAS:1361412562310100683
HistoryJun 21, 2010 - 12:00 a.m.

ZNC < 0.092 DoS Vulnerability

2010-06-2100:00:00
Copyright (C) 2010 Greenbone AG
plugins.openvas.org
7

7.5 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

72.8%

JSON

ZNC is prone to a remote denial-of-service vulnerability caused by a
NULL-pointer dereference.

# SPDX-FileCopyrightText: 2010 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

CPE = "cpe:/a:znc:znc";

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.100683");
  script_version("2023-07-28T16:09:07+0000");
  script_tag(name:"last_modification", value:"2023-07-28 16:09:07 +0000 (Fri, 28 Jul 2023)");
  script_tag(name:"creation_date", value:"2010-06-21 20:36:15 +0200 (Mon, 21 Jun 2010)");
  script_tag(name:"cvss_base", value:"3.5");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:S/C:N/I:N/A:P");
  script_cve_id("CVE-2010-2448");

  script_name("ZNC < 0.092 DoS Vulnerability");

  script_category(ACT_GATHER_INFO);
  script_family("Denial of Service");
  script_copyright("Copyright (C) 2010 Greenbone AG");
  script_dependencies("gb_znc_consolidation.nasl");
  script_mandatory_keys("znc/detected");

  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/40982");
  script_xref(name:"URL", value:"http://znc.svn.sourceforge.net/viewvc/znc?revision=2026&view=revision");
  script_xref(name:"URL", value:"https://bugzilla.redhat.com/show_bug.cgi?id=603915");

  script_tag(name:"summary", value:"ZNC is prone to a remote denial-of-service vulnerability caused by a
  NULL-pointer dereference.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");

  script_tag(name:"impact", value:"An attacker may exploit this issue to crash the application, resulting
  in denial-of-service conditions. Given the nature of this issue, the attacker may also be able to run arbitrary
  code, but this has not been confirmed.");

  script_tag(name:"affected", value:"Versions prior to ZNC 0.092 are vulnerable.");

  script_tag(name:"solution", value:"Updates are available. Please see the references for more information.");

  script_tag(name:"solution_type", value:"VendorFix");
  script_tag(name:"qod_type", value:"remote_banner_unreliable");

  exit(0);
}

include("version_func.inc");
include("host_details.inc");

if( ! vers = get_app_version( cpe:CPE, nofork:TRUE ) )
  exit( 0 );

if( version_is_less( version:vers, test_version:"0.092" ) ) {
  report = report_fixed_ver( installed_version:vers, fixed_version:"0.092" );
  security_message( port:0, data:report );
  exit( 0 );
}

exit( 99 );

Related

nessus 4
debian 1
cve 1
prion 1
cvelist 1
securityvulns 2
ubuntucve 2
nessus
nessus
Fedora 12 : znc-0.090-2.fc12 (2010-10078)
2010-07-01 00:00:00
Fedora 11 : znc-0.090-2.fc11 (2010-10082)
2010-07-01 00:00:00
Fedora 13 : znc-0.090-2.fc13 (2010-10042)
2010-07-01 00:00:00
debian
debian
[SECURITY] [DSA-2069-1] New znc packages fix denial of service
2010-07-12 02:11:45
cve
cve
CVE-2010-2448
2010-07-12 17:30:00
prion
prion
Null pointer dereference
2010-07-12 17:30:00
cvelist
cvelist
CVE-2010-2448
2022-10-03 16:21:08
securityvulns
securityvulns
znc DoS
2010-07-13 00:00:00
[SECURITY] [DSA-2069-1] New znc packages fix denial of service
2010-07-13 00:00:00
ubuntucve
ubuntucve
CVE-2010-2488
2019-11-12 00:00:00
CVE-2010-2448
2010-07-12 00:00:00

7.5 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

72.8%

JSON
Related for OPENVAS:1361412562310100683
nessus4debian1cve1prion1cvelist1securityvulns2ubuntucve2