CVE-2009-4893

UnrealIRCd 3.2beta11-3.2.8 - Buffer Overflow via Noident Option

Title source: llm
STIX 2.1

Description

Buffer overflow in UnrealIRCd 3.2beta11 through 3.2.8, when allow::options::noident is enabled, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.

References (4)

Core 4
Core References
Third Party Advisory vendor-advisory x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-201006-21.xml
Mailing List mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2010/06/14/13
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/42077

Scores

EPSS 0.0251
EPSS Percentile 82.9%

Details

CWE
CWE-119
Status published
Products (9)
unrealircd/unrealircd 3.2 beta11
unrealircd/unrealircd 3.2.1 (3 CPE variants)
unrealircd/unrealircd 3.2.2 (2 CPE variants)
unrealircd/unrealircd 3.2.3 (5 CPE variants)
unrealircd/unrealircd 3.2.4 (6 CPE variants)
unrealircd/unrealircd 3.2.5 (4 CPE variants)
unrealircd/unrealircd 3.2.6 (4 CPE variants)
unrealircd/unrealircd 3.2.7 (3 CPE variants)
unrealircd/unrealircd 3.2.8 (3 CPE variants)
Published Jun 15, 2010
Tracked Since Feb 18, 2026