CVE-2016-7144

moderate-risk
Published 2017-01-18

The m_authenticate function in modules/m_sasl.c in UnrealIRCd before 3.2.10.7 and 4.x before 4.0.6 allows remote attackers to spoof certificate fingerprints and consequently log in as another user via a crafted AUTHENTICATE parameter.

Do I need to act?

~
2.4% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
8
CVSS 8.1/10 High
NETWORK / HIGH complexity

Affected Products (8)

Unrealircd
Unrealircd
Unrealircd
Unrealircd
Unrealircd
Unrealircd
Unrealircd
Unrealircd

Affected Vendors

Unrealircd

References (10)

Mailing List http://www.openwall.com/lists/oss-security/2016/09/04/3
Mailing List http://www.openwall.com/lists/oss-security/2016/09/05/8
Third Party Advisory http://www.securityfocus.com/bid/92763
Vendor Advisory https://forums.unrealircd.org/viewtopic.php?f=1&t=8588
Patch https://github.com/unrealircd/unrealircd/commit/f473e355e1dc422c4f019dbf86bc50ba...
Mailing List http://www.openwall.com/lists/oss-security/2016/09/04/3
Mailing List http://www.openwall.com/lists/oss-security/2016/09/05/8
Third Party Advisory http://www.securityfocus.com/bid/92763
Vendor Advisory https://forums.unrealircd.org/viewtopic.php?f=1&t=8588
Patch https://github.com/unrealircd/unrealircd/commit/f473e355e1dc422c4f019dbf86bc50ba...
43
/ 100
moderate-risk
Severity 24/34 · High
Exploitability 5/34 · Minimal
Exposure 14/34 · Moderate