Denial of Service Vulnerability in ZNC by ZNC Development Team
CVE-2010-2448

Currently unrated

Key Information:

Vendor

Znc

Status
Znc
Vendor
CVE Published:
12 July 2010

What is CVE-2010-2448?

A vulnerability in ZNC allows remote authenticated users to induce a denial of service condition by triggering a NULL pointer dereference when accessing traffic statistics during an active unauthenticated session. This can be exploited using the traffic link in the web administration interface or via the traffic command in the /znc shell, potentially leading to a service crash and disruption of service.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://znc.svn.sourceforge.net/viewvc/znc/trunk/znc.cpp?r...
x_refsource_MISC
http://www.vupen.com/english/advisories/2010/1775
vdb-entryx_refsource_VUPEN
http://lists.fedoraproject.org/pipermail/package-announce...
vendor-advisoryx_refsource_FEDORA

Timeline

  • Vulnerability Reserved

  • Vulnerability published

JSON
.