Vulnerability Details CVE-2021-29376
ircII before 20210314 allows remote attackers to cause a denial of service (segmentation fault and client crash, disconnecting the victim from an IRC server) via a crafted CTCP UTC message.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.043
EPSS Ranking 88.4%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
- http://www.eterna.com.au/ircii/
- http://www.openwall.com/lists/oss-security/2021/03/30/4
- https://lists.debian.org/debian-lts-announce/2021/08/msg00022.html
- https://lists.debian.org/debian-lts-announce/2021/08/msg00023.html
- https://www.openwall.com/lists/oss-security/2021/03/24/2
- http://www.eterna.com.au/ircii/
- http://www.openwall.com/lists/oss-security/2021/03/30/4
- https://lists.debian.org/debian-lts-announce/2021/08/msg00022.html
- https://lists.debian.org/debian-lts-announce/2021/08/msg00023.html
- https://www.openwall.com/lists/oss-security/2021/03/24/2
Products affected by CVE-2021-29376
-
cpe:2.3:a:eterna:ircii:-
-
cpe:2.3:o:debian:debian_linux:9.0