CVE-2013-0238

Published Feb 13, 2013

Last updated 3 months ago

CVSS info 5.0

Overview

Description: The try_parse_v4_netmask function in hostmask.c in IRCD-Hybrid before 8.0.6 does not properly validate masks, which allows remote attackers to cause a denial of service (crash) via a mask that causes a negative number to be parsed.
Source: secalert@redhat.com
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:P

Weaknesses

nvd@nist.gov: CWE-20

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:ircd-hybrid:ircd-hybrid:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "86C8A0C8-4746-4A32-AEAF-6E1E0DC6F91A",
            "versionEndIncluding": "8.0.5"
          },
          {
            "criteria": "cpe:2.3:a:ircd-hybrid:ircd-hybrid:7.2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F5CB5086-4F61-4333-AAE3-5D7A8BFC4C61"
          },
          {
            "criteria": "cpe:2.3:a:ircd-hybrid:ircd-hybrid:7.2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9A014594-6C4F-44FE-AD2C-EFB68A07FBE6"
          },
          {
            "criteria": "cpe:2.3:a:ircd-hybrid:ircd-hybrid:7.2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "889E8F76-753E-4E71-B905-D0A481085486"
          },
          {
            "criteria": "cpe:2.3:a:ircd-hybrid:ircd-hybrid:7.2.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "456247AA-A2E9-4D74-BFCC-3F7FC86A7EFF"
          },
          {
            "criteria": "cpe:2.3:a:ircd-hybrid:ircd-hybrid:7.3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2A461012-E529-4980-8DA6-4338E21315D1"
          },
          {
            "criteria": "cpe:2.3:a:ircd-hybrid:ircd-hybrid:7.3.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "625ACA9D-463D-40E0-B21C-AB0B5F8B5645"
          },
          {
            "criteria": "cpe:2.3:a:ircd-hybrid:ircd-hybrid:7.3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "53C1B4F8-3352-4972-9DCF-694741038432"
          },
          {
            "criteria": "cpe:2.3:a:ircd-hybrid:ircd-hybrid:8.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1DAA4B35-BA16-4B3D-87FD-3D0FEE6CC2D7"
          },
          {
            "criteria": "cpe:2.3:a:ircd-hybrid:ircd-hybrid:8.0.0:beta1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "164F43EA-2C8C-44DD-9557-8E3E19A0E709"
          },
          {
            "criteria": "cpe:2.3:a:ircd-hybrid:ircd-hybrid:8.0.0:beta2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1F17DC13-1E65-44CB-B281-03F21B205334"
          },
          {
            "criteria": "cpe:2.3:a:ircd-hybrid:ircd-hybrid:8.0.0:beta3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4B6E867B-2586-4B10-AA21-1ECD2345847F"
          },
          {
            "criteria": "cpe:2.3:a:ircd-hybrid:ircd-hybrid:8.0.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9149286A-AA6F-4E67-931E-40F910DCE20C"
          },
          {
            "criteria": "cpe:2.3:a:ircd-hybrid:ircd-hybrid:8.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F56A5EF1-5E14-42AB-88E7-EF6C3A9CC09E"
          },
          {
            "criteria": "cpe:2.3:a:ircd-hybrid:ircd-hybrid:8.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6B408E49-A6FE-4C23-9A8F-5FB88B8F9D94"
          },
          {
            "criteria": "cpe:2.3:a:ircd-hybrid:ircd-hybrid:8.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D134E3FA-BAE8-47DB-A88E-01F005D7983B"
          },
          {
            "criteria": "cpe:2.3:a:ircd-hybrid:ircd-hybrid:8.0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E9C74B4A-6040-48CA-9165-6C8BCAB45CB5"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References