Описание
Non-registered IRC users using (1) ircd-hybrid 7.0.1 and earlier, (2) ircd-ratbox 1.5.1 and earlier, or (3) ircd-ratbox 2.0rc6 and earlier do not have a rate-limit imposed, which could allow remote attackers to cause a denial of service by repeatedly making requests, which are slowly dequeued.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 7.0.1 (включая)Версия до 1.5.1 (включая)Версия до 2.0_rc6 (включая)
Одно из
cpe:2.3:a:ircd-hybrid:ircd-hybrid:*:*:*:*:*:*:*:*
cpe:2.3:a:ircd-ratbox:ircd-ratbox:*:*:*:*:*:*:*:*
cpe:2.3:a:ircd-ratbox:ircd-ratbox:*:*:*:*:*:*:*:*
EPSS
Процентиль: 89%
0.05166
Низкий
5 Medium
CVSS2
Дефекты
CWE-16
Связанные уязвимости
debian
почти 21 год назад
Non-registered IRC users using (1) ircd-hybrid 7.0.1 and earlier, (2) ...
github
больше 3 лет назад
Non-registered IRC users using (1) ircd-hybrid 7.0.1 and earlier, (2) ircd-ratbox 1.5.1 and earlier, or (3) ircd-ratbox 2.0rc6 and earlier do not have a rate-limit imposed, which could allow remote attackers to cause a denial of service by repeatedly making requests, which are slowly dequeued.
EPSS
Процентиль: 89%
0.05166
Низкий
5 Medium
CVSS2
Дефекты
CWE-16