Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2016-7143

Опубликовано: 21 сент. 2016
Источник: debian
EPSS Низкий

Описание

The m_authenticate function in modules/m_sasl.c in Charybdis before 3.5.3 allows remote attackers to spoof certificate fingerprints and consequently log in as another user via a crafted AUTHENTICATE parameter.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
charybdisfixed3.5.3-1package
charybdisno-dsawheezypackage

Примечания

  • charybdis patch: https://github.com/charybdis-ircd/charybdis/commit/818a3fda944b26d4814132cee14cfda4ea4aa824

  • https://www.openwall.com/lists/oss-security/2016/09/04/3

EPSS

Процентиль: 77%
0.01006
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2016-7143

CVSS3: 8.1
ubuntu
больше 9 лет назад

The m_authenticate function in modules/m_sasl.c in Charybdis before 3.5.3 allows remote attackers to spoof certificate fingerprints and consequently log in as another user via a crafted AUTHENTICATE parameter.

nvd логотип

CVE-2016-7143

CVSS3: 8.1
nvd
больше 9 лет назад

The m_authenticate function in modules/m_sasl.c in Charybdis before 3.5.3 allows remote attackers to spoof certificate fingerprints and consequently log in as another user via a crafted AUTHENTICATE parameter.

github логотип

GHSA-fr2x-9vgp-crvv

CVSS3: 8.1
github
больше 3 лет назад

The m_authenticate function in modules/m_sasl.c in Charybdis before 3.5.3 allows remote attackers to spoof certificate fingerprints and consequently log in as another user via a crafted AUTHENTICATE parameter.

EPSS

Процентиль: 77%
0.01006
Низкий