CVE-2012-1836
inspircd - buffer overflow
EPSS 6.4%
Description
Heap-based buffer overflow in dns.cpp in InspIRCd 2.0.5 might allow remote attackers to execute arbitrary code via a crafted DNS query that uses compression.
How to fix CVE-2012-1836
To remediate CVE-2012-1836, upgrade the affected package to a fixed version below.
- Debian/inspircd—upgrade to 2.0.5-0.1 or later
- Debian/inspircd—upgrade to 1.1.22+dfsg-4+squeeze1 or later
Is CVE-2012-1836 being exploited?
Moderate — EPSS is 6.4%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (2)
- from 0, < 2.0.5-0.1
- from 0, < 1.1.22+dfsg-4+squeeze1