Summary
It was discovered that a bug in the server capability negotiation code of ircd-ratbox could result in denial of service.
Solution
For the stable distribution (squeeze), this problem has been fixed in version 3.0.6.dfsg-2+squeeze1.
For the testing distribution (wheezy), this problem has been fixed in version 3.0.7.dfsg-3.
For the unstable distribution (sid), this problem has been fixed in version 3.0.7.dfsg-3.
We recommend that you upgrade your ircd-ratbox packages.
Insight
ircd-ratbox is a full featured ircd. It is the primary ircd used on EFNet, combining the stability of an ircd required for a large production network together with a rich set of features making it suitable for use on smaller networks.
Affected
ircd-ratbox on Debian Linux
Detection
This check tests the installed software version using the apt package manager.
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2012-6084 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities