CVE-2013-0238

The try_parse_v4_netmask function in hostmask.c in IRCD-Hybrid before 8.0.6 does not properly validate masks, which allows remote attackers to cause a denial of service (crash) via a mask that causes a negative number to be parsed.
Severity
UNKNOWN
AV:N/AC:L/Au:N/C:N/I:N/A:P
Atk. Vector
NETWORK
Atk. Complexity
LOW
Base Score
CVSS 3.x
EPSS Score
Percentile: 97%
VendorProductVersion
ircd-hybridircd-hybrid
𝑥
≤ 8.0.5
ircd-hybridircd-hybrid
7.2.0
ircd-hybridircd-hybrid
7.2.1
ircd-hybridircd-hybrid
7.2.2
ircd-hybridircd-hybrid
7.2.3
ircd-hybridircd-hybrid
7.3.0
ircd-hybridircd-hybrid
7.3.0
ircd-hybridircd-hybrid
7.3.1
ircd-hybridircd-hybrid
8.0.0
ircd-hybridircd-hybrid
8.0.0
ircd-hybridircd-hybrid
8.0.0
ircd-hybridircd-hybrid
8.0.0
ircd-hybridircd-hybrid
8.0.0
ircd-hybridircd-hybrid
8.0.1
ircd-hybridircd-hybrid
8.0.2
ircd-hybridircd-hybrid
8.0.3
ircd-hybridircd-hybrid
8.0.4
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
ircd-hybrid
bullseye
1:8.2.38+dfsg.1-2
fixed
sid
1:8.2.43+dfsg.1-1
fixed
trixie
1:8.2.43+dfsg.1-1
fixed
bookworm
1:8.2.43+dfsg.1-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
ircd-hybrid
zesty
not-affected
yakkety
not-affected
xenial
not-affected
wily
not-affected
vivid
not-affected
utopic
not-affected
trusty
dne
saucy
not-affected
raring
not-affected
quantal
ignored
precise
ignored
oneiric
ignored
lucid
ignored
hardy
ignored
oftc-hybrid
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
utopic
dne
trusty
dne
saucy
dne
raring
ignored
quantal
ignored
precise
ignored
oneiric
ignored
lucid
ignored
hardy
ignored