The SILC_SERVER_CMD_FUNC function in apps/silcd/command.c in silc-server 1.0.2 allows remote attackers to cause a denial of service (NULL dereference and daemon crash) via a request without a cipher algorithm and an invalid HMAC algorithm.
http://www.securityfocus.com/bid/22846
http://security.gentoo.org/glsa/glsa-200703-12.xml
http://marc.info/?l=full-disclosure&m=117320823618036&w=2
https://exchange.xforce.ibmcloud.com/vulnerabilities/32846
http://secunia.com/advisories/24431
http://secunia.com/advisories/24426
Source: Mitre, NVD
Published: 2007-03-07
Updated: 2026-06-16
Base Score: 7.8
Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C
Severity: High
Base Score: 7.5
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS: 0.12645