ircd-ratbox m_capab.c Denial of Service

Medium Nessus Plugin ID 65197


The remote chat server is affected by a denial of service vulnerability.


The remote host is running a version of ircd-ratbox that is affected by a denial of service (DoS) vulnerability. An issue exists in the 'CAPAB' module in 'm_capab.c' that causes servers to improperly handle negotiation handshakes.

An unauthenticated, remote attacker could exploit this issue with a specially crafted request, impacting the availability of the service.


Upgrade to ircd-ratbox 3.0.8 or later.

See Also

Plugin Details

Severity: Medium

ID: 65197

File Name: ircd_ratbox_capab_dos.nasl

Version: $Revision: 1.3 $

Type: remote

Family: Misc.

Published: 2013/03/11

Modified: 2014/05/24

Dependencies: 11156

Risk Information

Risk Factor: Medium


Base Score: 5

Temporal Score: 4.3

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Temporal Vector: CVSS2#E:ND/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:ratbox:ircd-ratbox

Required KB Items: Settings/ParanoidReport

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2012/12/31

Vulnerability Publication Date: 2012/12/31

Reference Information

CVE: CVE-2012-6084

BID: 57085

OSVDB: 88840