CVE-2010-2812

Published: Aug 17, 2010Modified: Apr 29, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

Client.cpp in ZNC 0.092 allows remote attackers to cause a denial of service (exception and daemon crash) via a PING command that lacks an argument.

Affected (1)

Products: Znc: Znc

Znc

1 product

Znc

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Znc Znc	Version 0.092

Related CWEs

CWE-20

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (24)

http://lists.fedoraproject.org/pipermail/package-announce/2010-August/045385.html

Source: secalert@redhat.com

http://lists.fedoraproject.org/pipermail/package-announce/2010-August/045386.html

Source: secalert@redhat.com

http://marc.info/?l=oss-security&m=128146120727810&w=2

Source: secalert@redhat.com

http://marc.info/?l=oss-security&m=128146352011964&w=2

Source: secalert@redhat.com

http://marc.info/?l=oss-security&m=128152390219401&w=2

Source: secalert@redhat.com

http://secunia.com/advisories/40919

Source: secalert@redhat.com

Vendor Advisory

http://secunia.com/advisories/40970

Source: secalert@redhat.com

Vendor Advisory

http://www.securityfocus.com/bid/42314

Source: secalert@redhat.com

http://www.vupen.com/english/advisories/2010/2071

Source: secalert@redhat.com

Vendor Advisory

http://znc.svn.sourceforge.net/viewvc/znc/trunk/Client.cpp?r1=2093&r2=2092&pathrev=2093

Source: secalert@redhat.com

http://znc.svn.sourceforge.net/viewvc/znc?view=revision&revision=2093

Source: secalert@redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=622600

Source: secalert@redhat.com

http://lists.fedoraproject.org/pipermail/package-announce/2010-August/045385.html