90 matches found
Atheme IRC Services 7.0.5 Denial Of Service
!/usr/bin/python3 Monday, January 13, 2013 . . | || || | || \ / | / \ / | |/ \ / \ | || || |\ // // | \ / /\ /||/|| / |||| // / http://www.zempirians.com 00100011 01101100 01100101 01100111 01101001 01101111 01101110 -= Atheme - IRC Services Daemon =- Proof of Concept, Denial of Service T E A...
CVE-2012-1576
The myuserdelete function in libathemecore/account.c in Atheme 5.x before 5.2.7, 6.x before 6.0.10, and 7.x before 7.0.0-beta2 does not properly clean up CertFP entries when a user is deleted, which allows remote attackers to access a different user account or cause a denial of service daemon cra...
Code injection
The myuserdelete function in libathemecore/account.c in Atheme 5.x before 5.2.7, 6.x before 6.0.10, and 7.x before 7.0.0-beta2 does not properly clean up CertFP entries when a user is deleted, which allows remote attackers to access a different user account or cause a denial of service daemon cra...
CVE-2012-1576
The myuserdelete function in libathemecore/account.c in Atheme 5.x before 5.2.7, 6.x before 6.0.10, and 7.x before 7.0.0-beta2 does not properly clean up CertFP entries when a user is deleted, which allows remote attackers to access a different user account or cause a denial of service daemon cra...
CVE-2012-1576
Summary: CVE-2012-1576 affects Atheme IRC Services. The myuser_delete() function in libathemecore/account.c fails to remove CertFP entries when deleting a user, allowing a remote attacker to access another user’s account or cause a daemon crash by logging in as a deleted user. Affected branches: ...
CVE-2012-1576
The myuserdelete function in libathemecore/account.c in Atheme 5.x before 5.2.7, 6.x before 6.0.10, and 7.x before 7.0.0-beta2 does not properly clean up CertFP entries when a user is deleted, which allows remote attackers to access a different user account or cause a denial of service daemon cra...
GLSA-201209-09 : Atheme IRC Services: Denial of Service
The remote host is affected by the vulnerability described in GLSA-201209-09 Atheme IRC Services: Denial of Service The myuserdelete function in account.c does not properly remove CertFP entries when deleting user accounts. Impact : A remote authenticated attacker may be able to cause a Denial of...
Gentoo Security Advisory GLSA 201209-09 (atheme)
The remote host is missing updates announced in advisory GLSA 201209-09. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 201209-09 (atheme)
The remote host is missing updates announced in advisory GLSA 201209-09. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...
Atheme IRC Services: Denial of service
Background Atheme is a portable and secure set of open-source and modular IRC services. CertFP is certificate fingerprinting used to authenticate users to nicknames. Description The “myuserdelete” function in account.c does not properly remove CertFP entries when deleting user accounts. Impact A...