- Description
- Format string vulnerability in (1) Bahamut IRCd 1.4.35 and earlier, and other IRC daemons based on Bahamut including (2) digatech 1.2.1, (3) methane 0.1.1, (4) AndromedeIRCd 1.2.3-Release, and (5) ircd-RU, when running in debug mode, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a request containing format strings.
- Source
- cve@mitre.org
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 10
- Impact score
- 10
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:C/I:C/A:C
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:andromede:adromedeircd:1.2.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "281CAF12-023D-476A-B8B0-16A685C30820"
},
{
"criteria": "cpe:2.3:a:daniel_moss:methane:0.1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "72F9033C-A271-4489-B3E4-B94943D1DDA0"
},
{
"criteria": "cpe:2.3:a:hans_westerhof:digatech:1.2.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "886C0803-F84F-4904-AA2A-640586BCCBE3"
},
{
"criteria": "cpe:2.3:a:wenet:ircd-ru:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4E170674-6453-469D-8007-E8FDB1958E72"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:bahamut:ircd:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2E48A84B-BF4A-4871-B4F1-F34577BA8755",
"versionEndIncluding": "1.4.35"
}
],
"operator": "OR"
}
]
}
]