NVD

Id
47034  
Name
CVE-2012-6084  
Description
modules/m_capab.c in (1) ircd-ratbox before 3.0.8 and (2) Charybdis before 3.4.2 does not properly support capability negotiation during server handshakes, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a malformed request.  
Reject
 
CVSS Version
2  
CVSS Score
5  
Severity
Medium  
CVSS Base Score
5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:N/I:N/A:P)  
Pub Date
2017-01-19  
Published
2013-01-01  
Modified Date
2013-02-02  
Seq
2012-6084  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
235553 47034 CVE-2012-6084 [oss-security] 20130101 Re: Charybdis: Improper assumptions in the server handshake code may lead to a remote crash  View
235554 47034 CVE-2012-6084 http://rabbit.dereferenced.org/~nenolod/ASA-2012-12-31.txt  View
235555 47034 CVE-2012-6084 DSA-2612  View
235556 47034 CVE-2012-6084 http://www.ratbox.org/download/ircd-ratbox-3.0.8.tar.bz2  View
235557 47034 CVE-2012-6084 http://www.stack.nl/~jilles/irc/charybdis-3.4.2.tbz2  View
235558 47034 CVE-2012-6084 https://github.com/atheme/charybdis/commit/ac0707aa61d9c20e9b09062294701567c9f41595.patch  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
30146 JVNDB-2012-005853 ircd-ratbox および Charybdis の modules/m_capab.c おけるサービス運用妨害 (DoS) の脆弱性 (1) ircd-ratbox および (2) Charybdis の modules/m_capab.c は、サーバのハンドシェイク中に、能力のネゴシエーション (capability negotiation) を適切にサポートしないため、サービス運用妨害 (NULL ポインタデリファレンスおよびデーモンクラッシュ) 状態となる脆弱性が存在します。 CVE-2012-6084 59322 CVE-2012-6084 47034 5 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-005853.html 2012-12-31 2013-01-07 View