NgIRCd SSL/TLS Support MOTD Request Multiple Denial Of Service Vulnerabilities Network Vulnerability

Summary

ngIRCd is prone to multiple denial-of-service vulnerabilities when the server is running with SSL/TLS support. Attackers can leverage these issues to crash the server and deny access to legitimate users. ngIRCd 13 through ngIRCd 14 are vulnerable these issues have been fixed in ngIRCd 14.1.

Solution

Updates are available. Please see the references for details.

References

http://arthur.barton.de/cgi-bin/gitweb.cgi?p=ngircd.git;a=commit;h=627b0b713c52406e50c84bb9459e7794262920a2
http://ngircd.barton.de/doc/ChangeLog
http://ngircd.barton.de/index.php.en
http://www.securityfocus.com/bid/37021

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-4652
CVSS Base Score: 2.6
AV:N/AC:H/Au:N/C:N/I:N/A:P

Related Vulnerabilities

ngIRCd SSL/TLS Support MOTD Request Multiple Denial Of Service Vulnerabilities
Firefox Browser designMode Null Pointer Dereference DoS Vulnerability - Linux
Kingsoft Antivirus 'KisKrnl.sys' Driver Denial of Service Vulnerability
Wireshark PPP And NFS Dissector Denial of Service Vulnerabilities (Mac OS X)
Wireshark IEEE 802.11 Dissector Denial of Service Vulnerability (Mac OS X)

Take action and discover your vulnerabilities