Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The (1) Conn_GetCipherInfo and (2) Conn_UsesSSL functions in src/ngircd/conn.c in ngIRCd 13 and 14, when SSL/TLS support is present and standalone mode is disabled, allow remote attackers to cause a denial of service (application crash) by sending the MOTD command from another server in the same IRC network, possibly related to an array index error.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ngIRCd SSL/TLS支持MOTD请求远程拒绝服务漏洞
Vulnerability Description
ngIRCd是德国程序员Alexander Barton所研发的一款可在多平台上使用的IRC守护程序。 对于编译了SSL/TLS支持的ngIRCd服务器存在拒绝服务漏洞,远程攻击者可以通过向src/ngircd/conn.c文件中的Conn_GetCipherInfo()和Conn_UsesSSL()函数发送恶意的MOTD请求导致拒绝服务。仅有没有编译ssl/tls支持的服务器才不受影响,在配置中禁用SSL无法缓解这个漏洞。
CVSS Information
N/A
Vulnerability Type
N/A