Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2009-1789HistoryMay 26, 2009 - 4:30 p.m.
CVE-2009-1789
2009-05-2616:30:02
Debian Security Bug Tracker
security-tracker.debian.org
8
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.049 Low
EPSS
Percentile
92.8%
mod/server.mod/servmsg.c in Eggheads Eggdrop and Windrop 1.6.19 and earlier allows remote attackers to cause a denial of service (crash) via a crafted PRIVMSG that causes an empty string to trigger a negative string length copy. NOTE: this issue exists because of an incorrect fix for CVE-2007-2807.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | eggdrop | <Β 1.6.19-1.2 | eggdrop_1.6.19-1.2_all.deb |
| Debian | 11 | all | eggdrop | <Β 1.6.19-1.2 | eggdrop_1.6.19-1.2_all.deb |
| Debian | 999 | all | eggdrop | <Β 1.6.19-1.2 | eggdrop_1.6.19-1.2_all.deb |
| Debian | 13 | all | eggdrop | <Β 1.6.19-1.2 | eggdrop_1.6.19-1.2_all.deb |
Related
nessus
nessus
Debian DSA-1826-1 : eggdrop - several vulnerabilities
2010-02-24 00:00:00
Fedora 10 : eggdrop-1.6.19-4.fc10 (2009-5572)
2009-05-28 00:00:00
Fedora 9 : eggdrop-1.6.19-4.fc9 (2009-5568)
2009-05-28 00:00:00
openvas
openvas
Fedora Core 10 FEDORA-2009-5572 (eggdrop)
2009-06-05 00:00:00
Fedora Core 9 FEDORA-2009-5568 (eggdrop)
2009-06-05 00:00:00
Fedora Core 10 FEDORA-2009-5572 (eggdrop)
2009-06-05 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: eggdrop-1.6.19-4.fc10
2009-05-28 08:03:42
[SECURITY] Fedora 9 Update: eggdrop-1.6.19-4.fc9
2009-05-28 08:02:55
[SECURITY] Fedora 7 Update: eggdrop-1.6.18-12.fc7
2007-12-11 00:51:12
nvd
nvd
CVE-2009-1789
2009-05-26 16:30:02
CVE-2007-2807
2007-05-22 19:30:00
osv
osv
eggdrop - several vulnerabilities
2009-07-04 00:00:00
prion
prion
Design/Logic Flaw
2009-05-26 16:30:00
Stack overflow
2007-05-22 19:30:00
cve
cve
CVE-2009-1789
2009-05-26 16:30:02
CVE-2007-2807
2007-05-22 19:30:00
debian
debian
[SECURITY] [DSA 1826-1] New eggdrop packages fix several vulnerabilities
2009-07-04 02:53:03
[SECURITY] [DSA 1448-1] New eggdrop packages fix arbitrary code execution
2008-01-05 14:52:44
[SECURITY] [DSA 1448-1] New eggdrop packages fix execution of arbitrary code
2008-01-05 15:11:22
cvelist
cvelist
CVE-2009-1789
2009-05-26 16:00:00
CVE-2007-2807
2007-05-22 19:00:00
ubuntucve
ubuntucve
CVE-2009-1789
2009-05-26 00:00:00
CVE-2007-2807
2007-05-22 00:00:00
debiancve
debiancve
CVE-2007-2807
2007-05-22 19:30:00
securityvulns
securityvulns
Eggdrop IRC client buffer overflow
2007-09-08 00:00:00
[ MDKSA-2007:175 ] - Updated eggdrop package fix remote buffer overflow
2007-09-08 00:00:00
eggdrop / windrop IRC client DoS
2009-05-18 00:00:00
packetstorm
packetstorm
Eggdrop/Windrop 1.6.19 Denial Of Service
2009-05-15 00:00:00
gentoo
gentoo
Eggdrop: Buffer overflow
2007-09-15 00:00:00
seebug
seebug
Eggdrop servmsg.cθΏη¨ζη»ζε‘ζΌζ΄
2009-07-09 00:00:00
Eggdrop/Windrop 1.6.19 ctcpbuf Remote Crash Vulnerability
2009-05-17 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 6 package eggdrop version 1.6.18-alt2
2007-09-20 00:00:00
Security fix for the ALT Linux 6 package eggdrop version 1.6.19-alt2
2009-05-18 00:00:00
exploitpack
exploitpack
EggdropWindrop 1.6.19 - ctcpbuf Remote Crash
2009-05-15 00:00:00
freebsd
freebsd
eggdrop -- denial of service vulnerability
2009-05-15 00:00:00
exploitdb
exploitdb
Eggdrop/Windrop 1.6.19 - ctcpbuf Remote Crash
2009-05-15 00:00:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.049 Low
EPSS
Percentile
92.8%
Related for DEBIANCVE:CVE-2009-1789