Summary
| Detail | |||
|---|---|---|---|
| Vendor | Ircd-Ratbox | First view | 2004-12-06 |
| Product | Ircd-Ratbox | Last view | 2013-01-01 |
| Version | 1.2.3 | Type | Application |
| Update | * | ||
| Edition | * | ||
| Language | * | ||
| Sofware Edition | * | ||
| Target Software | * | ||
| Target Hardware | * | ||
| Other | * | ||
| CPE Product | cpe:2.3:a:ircd-ratbox:ircd-ratbox | ||
Activity : Overall
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 5 | 2013-01-01 | CVE-2012-6084 | modules/m_capab.c in (1) ircd-ratbox before 3.0.8 and (2) Charybdis before 3.4.2 does not properly support capability negotiation during server handshakes, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a malformed request. |
| 5 | 2010-02-04 | CVE-2010-0300 | cache.c in ircd-ratbox before 2.2.9 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a HELP command. |
| 6.8 | 2010-02-04 | CVE-2009-4016 | Integer underflow in the clean_string function in irc_string.c in (1) IRCD-hybrid 7.2.2 and 7.2.3, (2) ircd-ratbox before 2.2.9, and (3) oftc-hybrid before 1.6.8, when flatten_links is disabled, allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via a LINKS command. |
| 5 | 2007-05-21 | CVE-2007-2786 | Ratbox IRC Daemon (aka ircd-ratbox) 2.2.5 and earlier allows remote attackers to cause a denial of service (resource exhaustion) by making many requests from a single client. |
| 5 | 2004-12-06 | CVE-2004-0605 | Non-registered IRC users using (1) ircd-hybrid 7.0.1 and earlier, (2) ircd-ratbox 1.5.1 and earlier, or (3) ircd-ratbox 2.0rc6 and earlier do not have a rate-limit imposed, which could allow remote attackers to cause a denial of service by repeatedly making requests, which are slowly dequeued. |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 50% (1) | CWE-189 | Numeric Errors |
| 50% (1) | CWE-16 | Configuration |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 62153 | oftc-hybrid irc_string.c clean_string Function LINKS Command Remote Underflow |
| 62152 | ircd-ratbox irc_string.c clean_string Function LINKS Command Remote Underflow |
| 62151 | IRCD-hybrid irc_string.c clean_string Function LINKS Command Remote Underflow |
| 62150 | ircd-ratbox cache.c HELP Command NULL Dereference Remote DoS |
| 36238 | Ratbox IRC Daemon (aka ircd-ratbox) Unspecified Remote DoS |
| 7242 | Multiple IRC Client Non-registered User parse_client_queued Saturation DoS |
OpenVAS Exploits
| id | Description |
|---|---|
| 2010-06-11 | Name : Fedora Update for ircd-hybrid FEDORA-2010-9312 File : nvt/gb_fedora_2010_9312_ircd-hybrid_fc12.nasl |
| 2010-06-11 | Name : Fedora Update for ircd-ratbox FEDORA-2010-9312 File : nvt/gb_fedora_2010_9312_ircd-ratbox_fc12.nasl |
| 2010-02-10 | Name : FreeBSD Ports: ircd-ratbox File : nvt/freebsd_ircd-ratbox.nasl |
| 2010-02-01 | Name : Debian Security Advisory DSA 1980-1 (ircd-hybrid/ircd-ratbox) File : nvt/deb_1980_1.nasl |
| 2010-01-28 | Name : IRCD-Hybrid and ircd-ratbox 'LINKS' Command Remote Integer Underflow Vulnerab... File : nvt/ircd_hybrid_37978.nasl |
| 2010-01-28 | Name : IRCD-Hybrid and ircd-ratbox 'LINKS' Command Remote Integer Underflow Vulnerab... File : nvt/ircd_ratbox_37978.nasl |
| 2010-01-28 | Name : ircd-ratbox 'HELP' Command Denial Of Service Vulnerability File : nvt/ircd_ratbox_37979.nasl |
Nessus® Vulnerability Scanner
| id | Description |
|---|---|
| 2014-05-19 | Name: The remote Gentoo host is missing one or more security-related patches. File: gentoo_GLSA-201405-21.nasl - Type: ACT_GATHER_INFO |
| 2013-03-11 | Name: The remote chat server is affected by a denial of service vulnerability. File: ircd_charybdis_capab_dos.nasl - Type: ACT_GATHER_INFO |
| 2013-03-11 | Name: The remote chat server is affected by a denial of service vulnerability. File: ircd_ratbox_capab_dos.nasl - Type: ACT_GATHER_INFO |
| 2013-03-11 | Name: The remote chat server is affected by a denial of service vulnerability. File: ircd_shadowircd_capab_dos.nasl - Type: ACT_GATHER_INFO |
| 2013-01-25 | Name: The remote Debian host is missing a security-related update. File: debian_DSA-2612.nasl - Type: ACT_GATHER_INFO |
| 2010-07-01 | Name: The remote Fedora host is missing one or more security updates. File: fedora_2010-9312.nasl - Type: ACT_GATHER_INFO |
| 2010-02-24 | Name: The remote Debian host is missing a security-related update. File: debian_DSA-1980.nasl - Type: ACT_GATHER_INFO |
| 2010-01-29 | Name: The remote FreeBSD host is missing one or more security-related updates. File: freebsd_pkg_192609c80c5111df82a000248c9b4be7.nasl - Type: ACT_GATHER_INFO |
| 2004-08-10 | Name: The remote IRC server is affected by a denial of service attack. File: ircd_rate_limiting.nasl - Type: ACT_DESTRUCTIVE_ATTACK |
