4.3
CVE-2009-1789
- EPSS 14.22%
- Veröffentlicht 26.05.2009 16:30:02
- Zuletzt bearbeitet 09.04.2025 00:30:58
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Loginmod/server.mod/servmsg.c in Eggheads Eggdrop and Windrop 1.6.19 and earlier allows remote attackers to cause a denial of service (crash) via a crafted PRIVMSG that causes an empty string to trigger a negative string length copy. NOTE: this issue exists because of an incorrect fix for CVE-2007-2807.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Eggheads ≫ Eggdrop Irc Bot Version <= 1.6.19
Philip Moore ≫ Windrop Version <= 1.6.19
Philip Moore ≫ Windrop Version1.4.4 Editionfinal
Philip Moore ≫ Windrop Version1.4.6
Philip Moore ≫ Windrop Version1.5.4 Editionfinal
Philip Moore ≫ Windrop Version1.5.4 Updaterc1
Philip Moore ≫ Windrop Version1.5.4 Updaterc2
Philip Moore ≫ Windrop Version1.5.4a
Philip Moore ≫ Windrop Version1.6.0 Editionfinal
Philip Moore ≫ Windrop Version1.6.0 Updaterc1
Philip Moore ≫ Windrop Version1.6.0 Updaterc1-rel2
Philip Moore ≫ Windrop Version1.6.1
Philip Moore ≫ Windrop Version1.6.3
Philip Moore ≫ Windrop Version1.6.4 Updatesr1
Philip Moore ≫ Windrop Version1.6.6
Philip Moore ≫ Windrop Version1.6.7
Philip Moore ≫ Windrop Version1.6.8
Philip Moore ≫ Windrop Version1.6.9
Philip Moore ≫ Windrop Version1.6.10
Philip Moore ≫ Windrop Version1.6.12
Philip Moore ≫ Windrop Version1.6.13
Philip Moore ≫ Windrop Version1.6.15
Philip Moore ≫ Windrop Version1.6.16
Philip Moore ≫ Windrop Version1.6.17
Philip Moore ≫ Windrop Version1.6.18
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 14.22% | 0.937 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:N/I:N/A:P
|