Vulnerability Name:

CVE-2012-6084 (CCN-80890)

Assigned:2012-12-31
Published:2012-12-31
Updated:2013-02-02
Summary:modules/m_capab.c in (1) ircd-ratbox before 3.0.8 and (2) Charybdis before 3.4.2 does not properly support capability negotiation during server handshakes, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a malformed request.
Per http://cwe.mitre.org/data/definitions/476.html 'NULL Pointer Dereference'
CVSS v3 Severity:7.5 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): High
CVSS v2 Severity:5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
4.3 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P/E:H/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
7.8 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C)
6.8 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C/E:H/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Complete
Vulnerability Type:CWE-Other
Vulnerability Consequences:Denial of Service
References:Source: CCN
Type: Full-Disclosure Mailing List, Mon Dec 31 2012
Charybdis: Improper assumptions in the server handshake code may lead to a remote crash. (CAPAB module)

Source: MITRE
Type: CNA
CVE-2012-6084

Source: MLIST
Type: Patch
[oss-security] 20130101 Re: Charybdis: Improper assumptions in the server handshake code may lead to a remote crash

Source: CCN
Type: ASA-2012-12-31
Charybdis: Improper assumptions in the server handshake code may lead to a remote crash. (CAPAB module)

Source: CONFIRM
Type: UNKNOWN
http://rabbit.dereferenced.org/~nenolod/ASA-2012-12-31.txt

Source: CCN
Type: SA51677
Charybdis Server Capability Negotiation Denial of Service Vulnerability

Source: CCN
Type: SA51694
ircd-ratbox Server Capability Negotiation Denial of Service Vulnerability

Source: CCN
Type: SA51716
ShadowIRCd Server Capability Negotiation Denial of Service Vulnerability

Source: CCN
Type: The Atheme Project Web site
Charybdis

Source: DEBIAN
Type: UNKNOWN
DSA-2612

Source: DEBIAN
Type: DSA-2612
ircd-ratbox -- programming error

Source: CCN
Type: ShadowIRCd Web page
ShadowIRCd

Source: CCN
Type: ircd-ratbox Web Page
ircd-ratbox Project

Source: CONFIRM
Type: Patch
http://www.ratbox.org/download/ircd-ratbox-3.0.8.tar.bz2

Source: CCN
Type: BID-57085
ircd-ratbox 'm_capab.c' Denial of Service Vulnerability

Source: CONFIRM
Type: Patch
http://www.stack.nl/~jilles/irc/charybdis-3.4.2.tbz2

Source: XF
Type: UNKNOWN
ircdratbox-server-dos(80890)

Source: CONFIRM
Type: Patch
https://github.com/atheme/charybdis/commit/ac0707aa61d9c20e9b09062294701567c9f41595.patch

Source: CCN
Type: Packet Storm Security [01-04-2013]
Ratbox IRCd Denial Of Service

Vulnerable Configuration:Configuration 1:
  • cpe:/a:ircd-ratbox:ircd-ratbox:1.0:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:1.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:1.1.2:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:1.2.1:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:1.2.2:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:1.2.3:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:1.3:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:1.3.1:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:1.3.2:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:1.4:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:1.4:rc1:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:1.4:rc2:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:1.5:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:1.5.1:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:1.5.2:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:1.5.3:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.0.4:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.0.5:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.0.6:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.0.7:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.0.8:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.0.9:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.0.10:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.0.11:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.1.0:beta1:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.1.0:beta2:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.1.2:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.1.3:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.1.4:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.1.5:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.1.6:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.1.7:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.1.8:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.2.0:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.2.0:rc1:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.2.0:rc2:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.2.0:rc3:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.2.1:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.2.2:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.2.3:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.2.4:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.2.5:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.2.6:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.2.7:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.2.7.1:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.2.8:*:*:*:*:*:*:*
  • OR cpe:/a:ircd-ratbox:ircd-ratbox:2.2.9:*:*:*:*:*:*:*
  • OR cpe:/a:ratbox:ircd-ratbox:*:*:*:*:*:*:*:* (Version <= 3.0.7)

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:28388
    P
    		DSA-2612-2 -- ircd-ratbox -- programming error
    2015-08-17
    oval:org.mitre.oval:def:19367
    P
    		DSA-2612-1 ircd-ratbox - programming error
    2014-07-21
    oval:com.ubuntu.artful:def:20126084000
    V
    		CVE-2012-6084 on Ubuntu 17.10 (artful) - high.
    2013-01-01
    oval:com.ubuntu.trusty:def:20126084000
    V
    		CVE-2012-6084 on Ubuntu 14.04 LTS (trusty) - high.
    2013-01-01
    oval:com.ubuntu.cosmic:def:201260840000000
    V
    		CVE-2012-6084 on Ubuntu 18.10 (cosmic) - high.
    2013-01-01
    oval:com.ubuntu.bionic:def:20126084000
    V
    		CVE-2012-6084 on Ubuntu 18.04 LTS (bionic) - high.
    2013-01-01
    oval:com.ubuntu.xenial:def:20126084000
    V
    		CVE-2012-6084 on Ubuntu 16.04 LTS (xenial) - high.
    2013-01-01
    oval:com.ubuntu.bionic:def:201260840000000
    V
    		CVE-2012-6084 on Ubuntu 18.04 LTS (bionic) - high.
    2013-01-01
    oval:com.ubuntu.cosmic:def:20126084000
    V
    		CVE-2012-6084 on Ubuntu 18.10 (cosmic) - high.
    2013-01-01
    oval:com.ubuntu.xenial:def:201260840000000
    V
    		CVE-2012-6084 on Ubuntu 16.04 LTS (xenial) - high.
    2013-01-01
    oval:com.ubuntu.precise:def:20126084000
    V
    		CVE-2012-6084 on Ubuntu 12.04 LTS (precise) - high.
    2013-01-01
    BACK
    ircd-ratbox ircd-ratbox 1.0
    ircd-ratbox ircd-ratbox 1.1.1
    ircd-ratbox ircd-ratbox 1.1.2
    ircd-ratbox ircd-ratbox 1.2.1
    ircd-ratbox ircd-ratbox 1.2.2
    ircd-ratbox ircd-ratbox 1.2.3
    ircd-ratbox ircd-ratbox 1.3
    ircd-ratbox ircd-ratbox 1.3.1
    ircd-ratbox ircd-ratbox 1.3.2
    ircd-ratbox ircd-ratbox 1.4
    ircd-ratbox ircd-ratbox 1.4 rc1
    ircd-ratbox ircd-ratbox 1.4 rc2
    ircd-ratbox ircd-ratbox 1.5
    ircd-ratbox ircd-ratbox 1.5.1
    ircd-ratbox ircd-ratbox 1.5.2
    ircd-ratbox ircd-ratbox 1.5.3
    ircd-ratbox ircd-ratbox 2.0.1
    ircd-ratbox ircd-ratbox 2.0.2
    ircd-ratbox ircd-ratbox 2.0.3
    ircd-ratbox ircd-ratbox 2.0.4
    ircd-ratbox ircd-ratbox 2.0.5
    ircd-ratbox ircd-ratbox 2.0.6
    ircd-ratbox ircd-ratbox 2.0.7
    ircd-ratbox ircd-ratbox 2.0.8
    ircd-ratbox ircd-ratbox 2.0.9
    ircd-ratbox ircd-ratbox 2.0.10
    ircd-ratbox ircd-ratbox 2.0.11
    ircd-ratbox ircd-ratbox 2.1.0 beta1
    ircd-ratbox ircd-ratbox 2.1.0 beta2
    ircd-ratbox ircd-ratbox 2.1.1
    ircd-ratbox ircd-ratbox 2.1.2
    ircd-ratbox ircd-ratbox 2.1.3
    ircd-ratbox ircd-ratbox 2.1.4
    ircd-ratbox ircd-ratbox 2.1.5
    ircd-ratbox ircd-ratbox 2.1.6
    ircd-ratbox ircd-ratbox 2.1.7
    ircd-ratbox ircd-ratbox 2.1.8
    ircd-ratbox ircd-ratbox 2.2.0
    ircd-ratbox ircd-ratbox 2.2.0 rc1
    ircd-ratbox ircd-ratbox 2.2.0 rc2
    ircd-ratbox ircd-ratbox 2.2.0 rc3
    ircd-ratbox ircd-ratbox 2.2.1
    ircd-ratbox ircd-ratbox 2.2.2
    ircd-ratbox ircd-ratbox 2.2.3
    ircd-ratbox ircd-ratbox 2.2.4
    ircd-ratbox ircd-ratbox 2.2.5
    ircd-ratbox ircd-ratbox 2.2.6
    ircd-ratbox ircd-ratbox 2.2.7
    ircd-ratbox ircd-ratbox 2.2.7.1
    ircd-ratbox ircd-ratbox 2.2.8
    ircd-ratbox ircd-ratbox 2.2.9
    ratbox ircd-ratbox *