Non-registered IRC users using (1) ircd-hybrid 7.0.1 and earlier, (2) ircd-ratbox 1.5.1 and earlier, or (3) ircd-ratbox 2.0rc6 and earlier do not have a rate-limit imposed, which could allow remote attackers to cause a denial of service by repeatedly making requests, which are slowly dequeued.
References
Link | Resource |
---|---|
http://marc.info/?l=bugtraq&m=108766803817406&w=2 | |
http://www.securityfocus.com/bid/10572 | Patch Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/16457 |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2004-12-06 05:00
Updated : 2024-02-04 16:31
NVD link : CVE-2004-0605
Mitre link : CVE-2004-0605
CVE.ORG link : CVE-2004-0605
JSON object : View
Products Affected
ircd-hybrid
- ircd-hybrid
ircd-ratbox
- ircd-ratbox
CWE
CWE-16
Configuration