Vulnerability Name:

CVE-2009-1789 (CCN-50547)

Assigned:2009-05-14
Published:2009-05-14
Updated:2017-09-29
Summary:mod/server.mod/servmsg.c in Eggheads Eggdrop and Windrop 1.6.19 and earlier allows remote attackers to cause a denial of service (crash) via a crafted PRIVMSG that causes an empty string to trigger a negative string length copy.
Note: this issue exists because of an incorrect fix for CVE-2007-2807.
CVSS v3 Severity:5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Low
CVSS v2 Severity:4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P)
3.2 Low (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
4.3 Medium (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P)
3.2 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
Vulnerability Type:CWE-Other
Vulnerability Consequences:Denial of Service
References:Source: CCN
Type: Full-Disclosure Mailing List, Thu May 14 2009 - 22:54:08 CDT
eggdrop/windrop remote crash vulnerability

Source: FULLDISC
Type: UNKNOWN
20090514 eggdrop/windrop remote crash vulnerability

Source: CONFIRM
Type: UNKNOWN
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=528778

Source: MITRE
Type: CNA
CVE-2009-1789

Source: CONFIRM
Type: Patch, Vendor Advisory
http://cvs.eggheads.org/viewvc/viewvc.cgi/eggdrop1.6/doc/Changes1.6?revision=1.20&view=markup

Source: OSVDB
Type: UNKNOWN
54460

Source: CCN
Type: SA35104
Eggdrop servmsg.c Denial of Service Vulnerability

Source: SECUNIA
Type: Vendor Advisory
35104

Source: SECUNIA
Type: UNKNOWN
35158

Source: SECUNIA
Type: UNKNOWN
35690

Source: CCN
Type: Windrop Web site
Windrop

Source: DEBIAN
Type: UNKNOWN
DSA-1826

Source: DEBIAN
Type: DSA-1826
eggdrop -- several vulnerabilities

Source: CCN
Type: Egghead Web site
Eggheads.org - Main Index

Source: MANDRIVA
Type: UNKNOWN
MDVSA-2009:126

Source: CCN
Type: OSVDB ID: 54460
Eggdrop /mod/server.mod/servrmsg.c Private Message Handling DoS

Source: BUGTRAQ
Type: UNKNOWN
20090515 eggdrop/windrop remote crash vulnerability

Source: BID
Type: UNKNOWN
34985

Source: CCN
Type: BID-34985
Eggdrop 'ctcpbuf' Remote Denial Of Service Vulnerability

Source: VUPEN
Type: Patch, Vendor Advisory
ADV-2009-1340

Source: XF
Type: UNKNOWN
eggdrop-servmsg-dos(50547)

Source: XF
Type: UNKNOWN
eggdrop-servmsg-dos(50547)

Source: EXPLOIT-DB
Type: UNKNOWN
8695

Source: FEDORA
Type: UNKNOWN
FEDORA-2009-5568

Source: FEDORA
Type: UNKNOWN
FEDORA-2009-5572

Vulnerable Configuration:Configuration 1:
  • cpe:/a:eggheads:eggdrop:1.6.0:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.1:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.2:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.3:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.4:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.5:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.6:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.7:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.8:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.9:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.10:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.11:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.12:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.13:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.14:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.15:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.16:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.17:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.18:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.18:rc1:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop_irc_bot:*:*:*:*:*:*:*:* (Version <= 1.6.19)
  • OR cpe:/a:philip_moore:windrop:1.4.4:*:final:*:*:*:*:*
  • OR cpe:/a:philip_moore:windrop:1.4.6:*:*:*:*:*:*:*
  • OR cpe:/a:philip_moore:windrop:1.5.4:*:final:*:*:*:*:*
  • OR cpe:/a:philip_moore:windrop:1.5.4:rc1:*:*:*:*:*:*
  • OR cpe:/a:philip_moore:windrop:1.5.4:rc2:*:*:*:*:*:*
  • OR cpe:/a:philip_moore:windrop:1.5.4a:*:*:*:*:*:*:*
  • OR cpe:/a:philip_moore:windrop:1.6.0:*:final:*:*:*:*:*
  • OR cpe:/a:philip_moore:windrop:1.6.0:rc1:*:*:*:*:*:*
  • OR cpe:/a:philip_moore:windrop:1.6.0:rc1-rel2:*:*:*:*:*:*
  • OR cpe:/a:philip_moore:windrop:1.6.1:*:*:*:*:*:*:*
  • OR cpe:/a:philip_moore:windrop:1.6.2+bindsfix:*:*:*:*:*:*:*
  • OR cpe:/a:philip_moore:windrop:1.6.3:*:*:*:*:*:*:*
  • OR cpe:/a:philip_moore:windrop:1.6.4:sr1:*:*:*:*:*:*
  • OR cpe:/a:philip_moore:windrop:1.6.6:*:*:*:*:*:*:*
  • OR cpe:/a:philip_moore:windrop:1.6.7:*:*:*:*:*:*:*
  • OR cpe:/a:philip_moore:windrop:1.6.8:*:*:*:*:*:*:*
  • OR cpe:/a:philip_moore:windrop:1.6.9:*:*:*:*:*:*:*
  • OR cpe:/a:philip_moore:windrop:1.6.10:*:*:*:*:*:*:*
  • OR cpe:/a:philip_moore:windrop:1.6.12:*:*:*:*:*:*:*
  • OR cpe:/a:philip_moore:windrop:1.6.13:*:*:*:*:*:*:*
  • OR cpe:/a:philip_moore:windrop:1.6.15:*:*:*:*:*:*:*
  • OR cpe:/a:philip_moore:windrop:1.6.16:*:*:*:*:*:*:*
  • OR cpe:/a:philip_moore:windrop:1.6.17:*:*:*:*:*:*:*
  • OR cpe:/a:philip_moore:windrop:1.6.18:*:*:*:*:*:*:*
  • OR cpe:/a:philip_moore:windrop:*:*:*:*:*:*:*:* (Version <= 1.6.19)
  • OR cpe:/a:philip_moore:windrop:1.6.19+ctcpfix:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:eggheads:eggdrop:1.6.15:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.16:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.17:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.18:rc1:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop_irc_bot:1.6.19:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.18:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.14:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.13:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.12:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.11:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.10:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.9:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.8:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.7:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.6:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.5:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.4:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.3:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.2:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.1:*:*:*:*:*:*:*
  • OR cpe:/a:eggheads:eggdrop:1.6.0:*:*:*:*:*:*:*
  • AND
  • cpe:/o:mandrakesoft:mandrake_linux_corporate_server:3.0:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:3.0::x86_64:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:2008.0::x86-64:*:*:*:*:*
  • OR cpe:/o:debian:debian_linux:4.0:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:2008.0:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:2008.1:x86_64:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:2008.1:*:*:*:*:*:*:*
  • OR cpe:/o:mandriva:linux:2009.0:*:*:*:*:*:*:*
  • OR cpe:/o:mandriva:linux:2009.0:-:x86_64:*:*:*:*:*
  • OR cpe:/o:debian:debian_linux:5.0:*:*:*:*:*:*:*
  • OR cpe:/o:mandriva:linux:2009.1:*:*:*:*:*:*:*
  • OR cpe:/o:mandriva:linux:2009.1:*:*:*:x86_64:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:8035
    P
    		DSA-1826 eggdrop -- several vulnerabilities
    2014-06-23
    oval:org.mitre.oval:def:13056
    P
    		DSA-1826-1 eggdrop -- several
    2014-06-23
    oval:org.debian:def:1826
    V
    		several vulnerabilities
    2009-07-04
    BACK
    eggheads eggdrop 1.6.0
    eggheads eggdrop 1.6.1
    eggheads eggdrop 1.6.2
    eggheads eggdrop 1.6.3
    eggheads eggdrop 1.6.4
    eggheads eggdrop 1.6.5
    eggheads eggdrop 1.6.6
    eggheads eggdrop 1.6.7
    eggheads eggdrop 1.6.8
    eggheads eggdrop 1.6.9
    eggheads eggdrop 1.6.10
    eggheads eggdrop 1.6.11
    eggheads eggdrop 1.6.12
    eggheads eggdrop 1.6.13
    eggheads eggdrop 1.6.14
    eggheads eggdrop 1.6.15
    eggheads eggdrop 1.6.16
    eggheads eggdrop 1.6.17
    eggheads eggdrop 1.6.18
    eggheads eggdrop 1.6.18 rc1
    eggheads eggdrop irc bot *
    philip_moore windrop 1.4.4
    philip_moore windrop 1.4.6
    philip_moore windrop 1.5.4
    philip_moore windrop 1.5.4 rc1
    philip_moore windrop 1.5.4 rc2
    philip_moore windrop 1.5.4a
    philip_moore windrop 1.6.0
    philip_moore windrop 1.6.0 rc1
    philip_moore windrop 1.6.0 rc1-rel2
    philip_moore windrop 1.6.1
    philip_moore windrop 1.6.2+bindsfix
    philip_moore windrop 1.6.3
    philip_moore windrop 1.6.4 sr1
    philip_moore windrop 1.6.6
    philip_moore windrop 1.6.7
    philip_moore windrop 1.6.8
    philip_moore windrop 1.6.9
    philip_moore windrop 1.6.10
    philip_moore windrop 1.6.12
    philip_moore windrop 1.6.13
    philip_moore windrop 1.6.15
    philip_moore windrop 1.6.16
    philip_moore windrop 1.6.17
    philip_moore windrop 1.6.18
    philip_moore windrop *
    philip_moore windrop 1.6.19+ctcpfix
    eggheads eggdrop 1.6.15
    eggheads eggdrop 1.6.16
    eggheads eggdrop 1.6.17
    eggheads eggdrop 1.6.18 rc1
    eggheads eggdrop irc bot 1.6.19
    eggheads eggdrop 1.6.18
    eggheads eggdrop 1.6.14
    eggheads eggdrop 1.6.13
    eggheads eggdrop 1.6.12
    eggheads eggdrop 1.6.11
    eggheads eggdrop 1.6.10
    eggheads eggdrop 1.6.9
    eggheads eggdrop 1.6.8
    eggheads eggdrop 1.6.7
    eggheads eggdrop 1.6.6
    eggheads eggdrop 1.6.5
    eggheads eggdrop 1.6.4
    eggheads eggdrop 1.6.3
    eggheads eggdrop 1.6.2
    eggheads eggdrop 1.6.1
    eggheads eggdrop 1.6.0
    mandrakesoft mandrake linux corporate server 3.0
    mandrakesoft mandrake linux corporate server 3.0
    mandrakesoft mandrake linux 2008.0
    debian debian linux 4.0
    mandrakesoft mandrake linux 2008.0
    mandrakesoft mandrake linux 2008.1 x86_64
    mandrakesoft mandrake linux 2008.1
    mandriva linux 2009.0
    mandriva linux 2009.0 -
    debian debian linux 5.0
    mandriva linux 2009.1
    mandriva linux 2009.1