Lucene search

K
ubuntucveUbuntu.comUB:CVE-2011-3354
HistorySep 09, 2011 - 12:00 a.m.

CVE-2011-3354

2011-09-0900:00:00
ubuntu.com
ubuntu.com
6

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.038 Low

EPSS

Percentile

91.6%

The CtcpParser::packedReply method in core/ctcpparser.cpp in Quassel before
0.7.3 allows remote attackers to cause a denial of service (crash) via a
crafted Client-To-Client Protocol (CTCP) request, as demonstrated in the
wild in September 2011.

Bugs

Notes

Author Note
jdstrand remote DoS being actively exploited CVE requested on oss-security
OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarchquassel< 0.6.1-0ubuntu1.2UNKNOWN
ubuntu10.10noarchquassel< 0.7.1-0ubuntu1.1UNKNOWN
ubuntu11.04noarchquassel< 0.7.2-0ubuntu2.2UNKNOWN

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.038 Low

EPSS

Percentile

91.6%

Related for UB:CVE-2011-3354