Signature Detail

CHAT: Ratbox IRCd 'm_capab.c' Denial of Service

This signature detects attempts to exploit a known vulnerability against Ratbox IRCd. A successful attack can result in a denial-of-service condition.

Extended Description

modules/m_capab.c in (1) ircd-ratbox before 3.0.8 and (2) Charybdis before 3.4.2 does not properly support capability negotiation during server handshakes, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a malformed request.

Affected Products

• ircd-ratbox 1.0
• ircd-ratbox 1.1.1
• ircd-ratbox 1.1.2
• ircd-ratbox 1.2.1
• ircd-ratbox 1.2.2
• ircd-ratbox 1.2.3
• ircd-ratbox 1.3
• ircd-ratbox 1.3.1
• ircd-ratbox 1.3.2
• ircd-ratbox 1.4 (rc1)
• ircd-ratbox 1.4 (rc2)
• ircd-ratbox 1.5
• ircd-ratbox 1.5.1
• ircd-ratbox 1.5.2
• ircd-ratbox 1.5.3
• ircd-ratbox 2.0.1
• ircd-ratbox 2.0.10
• ircd-ratbox 2.0.11
• ircd-ratbox 2.0.2
• ircd-ratbox 2.0.3
• ircd-ratbox 2.0.4
• ircd-ratbox 2.0.5
• ircd-ratbox 2.0.6
• ircd-ratbox 2.0.7
• ircd-ratbox 2.0.8
• ircd-ratbox 2.0.9
• ircd-ratbox 2.1.0 (beta1)
• ircd-ratbox 2.1.0 (beta2)
• ircd-ratbox 2.1.1
• ircd-ratbox 2.1.2
• ircd-ratbox 2.1.3
• ircd-ratbox 2.1.4
• ircd-ratbox 2.1.5
• ircd-ratbox 2.1.6
• ircd-ratbox 2.1.7
• ircd-ratbox 2.1.8
• ircd-ratbox 2.2.0 (rc1)
• ircd-ratbox 2.2.0 (rc2)
• ircd-ratbox 2.2.0 (rc3)
• ircd-ratbox 2.2.1
• ircd-ratbox 2.2.2
• ircd-ratbox 2.2.3
• ircd-ratbox 2.2.4
• ircd-ratbox 2.2.5
• ircd-ratbox 2.2.6
• ircd-ratbox 2.2.7
• ircd-ratbox 2.2.7.1
• ircd-ratbox 2.2.8
• ircd-ratbox 2.2.9
• ratbox ircd-ratbox up to 3.0.7

References

• BugTraq: 57085
• CVE: CVE-2012-6084