Lucene search
K

4 matches found

OSV
OSV
added 2016/09/21 2:25 p.m.11 views

CVE-2016-7143

The mauthenticate function in modules/msasl.c in Charybdis before 3.5.3 allows remote attackers to spoof certificate fingerprints and consequently log in as another user via a crafted AUTHENTICATE parameter...

8.1CVSS7.8AI score
Exploits0References6
CVE
CVE
added 2016/09/21 2:0 p.m.58 views

CVE-2016-7143

CVE-2016-7143 affects the Charybdis IRC daemon (m_authenticate in modules/m_sasl.c) prior to version 3.5.3. The vulnerability lets remote attackers spoof certificate fingerprints and log in as another user via a crafted AUTHENTICATE parameter, with impact described as partial confidentiality/inte...

8.1CVSS7.6AI score0.0106EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/09/08 12:0 a.m.20 views

Debian DSA-3661-1 : charybdis - security update

It was discovered that incorrect SASL authentication in the Charybdis IRC server may lead to users impersonating other users. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-3661. The text...

8.1CVSS7.3AI score0.0106EPSS
Exploits0References3
Debian
Debian
added 2016/09/06 8:14 p.m.17 views

[SECURITY] [DSA 3661-1] charybdis security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3661-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 06, 2016 https://www.debian.org/security/faq -...

8.1CVSS8.1AI score0.0106EPSS
Exploits0
Rows per page
Query Builder