Vulnerabilities > CVE-2005-4624 - Remote Denial of Service vulnerability in PTnet Ircd 1.5/1.6

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

ptnet

NVD

Published: 2005-12-31

Updated: 2008-09-05

Summary

The m_join function in channel.c for PTnet ircd 1.5 and 1.6 allows remote attackers to cause a denial of service (memory exhaustion that triggers a daemon restart) via a large number of requests to join a "charmed channel" such as PTnet, #PTnoticias and #*.log, which causes ircd to open the channel even though it does not have any valid users.

Vulnerable Configurations

Part	Description	Count
Application	Ptnet Ptnet Ptnet Ircd 1.5 Ptnet Ptnet Ircd 1.6	2

References

http://archives.neohapsis.com/archives/fulldisclosure/2005-12/1476.html
http://securitytracker.com/id?1015425
http://www.securityfocus.com/bid/16089