Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.8
CVSSv2

CVE-2009-4016

Published: 04/02/2010 Updated: 05/02/2010
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
VMScore: 605
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Subscribe to Ircd-hybrid

Vulnerability Summary

Integer underflow in the clean_string function in irc_string.c in (1) IRCD-hybrid 7.2.2 and 7.2.3, (2) ircd-ratbox prior to 2.2.9, and (3) oftc-hybrid prior to 1.6.8, when flatten_links is disabled, allows remote malicious users to execute arbitrary code or cause a denial of service (daemon crash) via a LINKS command.

Vulnerable Product Search on Vulmon Subscribe to Product

ircd-hybrid ircd-hybrid 7.2.2

ircd-hybrid ircd-hybrid 7.2.3

ircd-ratbox ircd-ratbox 2.2.7

ircd-ratbox ircd-ratbox 2.2.0

ircd-ratbox ircd-ratbox 2.1.3

ircd-ratbox ircd-ratbox 2.1.1

ircd-ratbox ircd-ratbox 2.0.8

ircd-ratbox ircd-ratbox 2.0.6

ircd-ratbox ircd-ratbox 2.0.1

ircd-ratbox ircd-ratbox 1.5

ircd-ratbox ircd-ratbox 1.4.2

ircd-ratbox ircd-ratbox 1.3

ircd-ratbox ircd-ratbox 1.2.1

ircd-ratbox ircd-ratbox 1.1.2

ircd-ratbox ircd-ratbox 1.0

ircd-ratbox ircd-ratbox 2.2.5

ircd-ratbox ircd-ratbox 2.2.4

ircd-ratbox ircd-ratbox 2.2.3

ircd-ratbox ircd-ratbox 2.2.2

ircd-ratbox ircd-ratbox 2.2.1

ircd-ratbox ircd-ratbox 2.1.0

ircd-ratbox ircd-ratbox 2.0.9

ircd-ratbox ircd-ratbox 1.5.2

ircd-ratbox ircd-ratbox 1.5.1

ircd-ratbox ircd-ratbox 1.4

ircd-ratbox ircd-ratbox 2.1.8

ircd-ratbox ircd-ratbox 2.1.7

ircd-ratbox ircd-ratbox 2.1.6

ircd-ratbox ircd-ratbox 2.1.5

ircd-ratbox ircd-ratbox 2.0.4

ircd-ratbox ircd-ratbox 2.0.3

ircd-ratbox ircd-ratbox 2.0.2

ircd-ratbox ircd-ratbox 2.0.11

ircd-ratbox ircd-ratbox 2.0.10

ircd-ratbox ircd-ratbox 1.3.2

ircd-ratbox ircd-ratbox 1.3.1

ircd-ratbox ircd-ratbox 1.2.3

ircd-ratbox ircd-ratbox 1.2.2

ircd-ratbox ircd-ratbox

ircd-ratbox ircd-ratbox 2.2.6

ircd-ratbox ircd-ratbox 2.1.4

ircd-ratbox ircd-ratbox 2.1.2

ircd-ratbox ircd-ratbox 2.0.7

ircd-ratbox ircd-ratbox 2.0.5

ircd-ratbox ircd-ratbox 2.0.0

ircd-ratbox ircd-ratbox 1.5.3

ircd-ratbox ircd-ratbox 1.4.1

ircd-ratbox ircd-ratbox 1.1

ircd-ratbox ircd-ratbox 1.1.1

oftc oftc-hybrid 1.6.4

oftc oftc-hybrid 1.6.2

oftc oftc-hybrid 1.5.3

oftc oftc-hybrid 1.5.1

oftc oftc-hybrid

oftc oftc-hybrid 1.6.6

oftc oftc-hybrid 1.6.5

oftc oftc-hybrid 1.5.0

oftc oftc-hybrid 1.4.1

oftc oftc-hybrid 1.4.0

oftc oftc-hybrid 1.6.0

oftc oftc-hybrid 1.5.7

oftc oftc-hybrid 1.5.6

oftc oftc-hybrid 1.5.5

oftc oftc-hybrid 1.6.3

oftc oftc-hybrid 1.6.1

oftc oftc-hybrid 1.5.4

oftc oftc-hybrid 1.5.2

References

CWE-189http://secunia.com/advisories/38210http://www.debian.org/security/2010/dsa-1980http://trac.oftc.net/projects/oftc-hybrid/browser/tags/oftc-hybrid-1.6.8/RELNOTEShttp://security.debian.org/pool/updates/main/i/ircd-hybrid/ircd-hybrid_7.2.2.dfsg.2-4+lenny1.diff.gzhttp://secunia.com/advisories/38383http://www.securityfocus.com/bid/37978http://lists.ratbox.org/pipermail/ircd-ratbox/2010-January/000891.htmlhttp://svn.ircd-hybrid.org:8000/viewcvs.cgi?rev=1044&view=revhttp://secunia.com/advisories/38381http://secunia.com/advisories/38382https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463CVE-2024-29895injectCVE-2023-52689CVE-2024-5049CVE-2024-5051privilege escalationphysicalCVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook