Lucene search

[email protected]CVE-2014-5508

HistorySep 05, 2014 - 2:55 p.m.

CVE-2014-5508

2014-09-0514:55:03

CWE-189

[email protected]

web.nvd.nist.gov

cve-2014-5508

integer overflow

helpserv

srvx 1.3.1

denial of service

ircops

nvd

3.5 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:N/I:N/A:P

6.5 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

71.0%

JSON

Multiple integer overflows in the HelpServ module (mod-helpserv.c) in srvx 1.3.1 allow remote authenticated IRCops or HelpServ bot managers to cause a denial of service (infinite loop) via a large value in the EmptyInterval parameter or certain other interval configurations.

Affected configurations

NVD

Node

srvxsrvxMatch1.3.1

CPENameOperatorVersion
srvx:srvxsrvxeq1.3.1

CPE	Name	Operator	Version
srvx:srvx	srvx	eq	1.3.1

References

www.openwall.com/lists/oss-security/2014/08/28/5

www.openwall.com/lists/oss-security/2014/08/30/1

www.securityfocus.com/bid/69454

3.5 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:N/I:N/A:P

6.5 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

71.0%

JSON

Related for CVE-2014-5508

prion1 cvelist1 nvd1