1. CVE-Search
  2. CVE-2008-1501
ID CVE-2008-1501
Summary The send_user_mode function in s_user.c in (1) Undernet ircu 2.10.12.12 and earlier, (2) snircd 1.3.4 and earlier, and unspecified other ircu derivatives allows remote attackers to cause a denial of service (daemon crash) via a malformed MODE command.
References
Vulnerable Configurations
  • cpe:2.3:a:ircu:ircu:*:*:*:*:*:*:*:*
    cpe:2.3:a:ircu:ircu:*:*:*:*:*:*:*:*
  • cpe:2.3:a:quakenet:snircd:*:*:*:*:*:*:*:*
    cpe:2.3:a:quakenet:snircd:*:*:*:*:*:*:*:*
CVSS
Base: 5.0 (as of 11-10-2018 - 20:35)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:N/I:N/A:P
refmap via4
bid 28413
bugtraq 20080324 ircu/snircd remote crash vulnerability
confirm http://hg.quakenet.org/snircd/rev/2da2b881d9f5
exploit-db 5306
fulldisc 20080324 ircu/snircd remote crash vulnerability
osvdb 43613
sectrack
  • 1019687
  • 1019688
secunia
  • 29481
  • 29486
sreason 3779
vupen
  • ADV-2008-0977
  • ADV-2008-0978
xf
  • snircd-sendusermode-dos(41397)
  • undernet-ircu-sendusermode-dos(41401)
Last major update 11-10-2018 - 20:35
Published 25-03-2008 - 19:44
Last modified 11-10-2018 - 20:35
Back to Top