Published: 04/02/2010 Updated: 17/08/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

mystring.c in hybserv in IRCD-Hybrid (aka Hybrid2 IRC Services) 1.9.2 up to and including 1.9.4 allows remote malicious users to cause a denial of service (daemon crash) via a ":help \t" private message to the MemoServ service.

Vulnerable Product	Search on Vulmon	Subscribe to Product
dinko korunic hybserv2 1.9.2
dinko korunic hybserv2 1.9.3
dinko korunic hybserv2 1.9.4

source: wwwsecurityfocuscom/bid/38006/info Hybserv2 is prone to a denial-of-service vulnerability Attackers can exploit this issue to deny service to legitimate users Hybserv2 194 is vulnerable; other versions may also be affected The following example command is available: PRIVMSG memoserv :help \t ...

CWE-20 http://marc.info/?l=oss-security&m=126476591925300&w=2 http://secunia.com/advisories/38352 http://www.debian.org/security/2010/dsa-1982 http://security.debian.org/pool/updates/main/h/hybserv/hybserv_1.9.2-4+lenny2.diff.gz http://www.securityfocus.com/bid/38006 http://secunia.com/advisories/38350 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=550389 https://exchange.xforce.ibmcloud.com/vulnerabilities/55992 https://nvd.nist.gov https://www.exploit-db.com/exploits/33581/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2010-0303

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect