漏洞信息详情
ngIRCd irc-channel.c 拒绝服务漏洞
- CNNVD编号:CNNVD-200711-289
- 危害等级: 低危
- CVE编号: CVE-2007-6062
- 漏洞类型: 输入验证
- 发布时间: 2007-11-20
- 威胁类型: 远程
- 更新时间: 2007-11-21
- 厂 商: ngircd
- 漏洞来源: The vendor reporte...
漏洞简介
ngIRCd 0.10.3中的irc-channel.c存在拒绝服务漏洞。远程攻击者借助一个不包含一个channel参数的JOIN指令造成拒绝服务(崩溃)
漏洞公告
目前厂商已经发布了升级补丁以修复这个安全问题,补丁下载链接:
ngIRCd ngIRCd 0.10.2
ngIRCd ngIRCd 0.10.3
http://ngircd.barton.de/#download
ngIRCd ngIRCd 0.6
ngIRCd ngIRCd 0.10.3
http://ngircd.barton.de/#download
ngIRCd ngIRCd 0.6.1
ngIRCd ngIRCd 0.10.3
http://ngircd.barton.de/#download
ngIRCd ngIRCd 0.7
ngIRCd ngIRCd 0.10.3
http://ngircd.barton.de/#download
ngIRCd ngIRCd 0.7.1
ngIRCd ngIRCd 0.10.3
http://ngircd.barton.de/#download
ngIRCd ngIRCd 0.7.5
ngIRCd ngIRCd 0.10.3
http://ngircd.barton.de/#download
ngIRCd ngIRCd 0.7.6
ngIRCd ngIRCd 0.10.3
http://ngircd.barton.de/#download
ngIRCd ngIRCd 0.7.7
ngIRCd ngIRCd 0.10.3
http://ngircd.barton.de/#download
ngIRCd ngIRCd 0.8
ngIRCd ngIRCd 0.10.3
http://ngircd.barton.de/#download
ngIRCd ngIRCd 0.8.1
ngIRCd ngIRCd 0.10.3
http://ngircd.barton.de/#download
ngIRCd ngIRCd 0.8.2
ngIRCd ngIRCd 0.10.3
http://ngircd.barton.de/#download
参考网址
来源: BID
名称: 26489
链接:http://www.securityfocus.com/bid/26489
来源: SECUNIA
名称: 27692
链接:http://secunia.com/advisories/27692
来源: OSVDB
名称: 39295
链接:http://osvdb.org/39295
来源: ngircd.barton.de
链接:http://ngircd.barton.de/doc/ChangeLog
来源: MISC
链接:http://bugs.debian.org/cgi-bin/bugreport.cgi?msg=10;filename=90-remote-vulnerability.dpatch;att=1;bug=451875
来源: bugs.debian.org
链接:http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=451875
来源: MLIST
名称: [ngIRCd-ML] 20070731 ngIRCd 0.10.3 - Security
链接:http://arthur.barton.de/pipermail/ngircd-ml/2007-July/000292.HTML
受影响实体
- Ngircd Ngircd:0.10.3
补丁
暂无
评论