CVE-2007-4408

EPSS 0.46%

Published: 8/18/2007Modified: 4/28/2026

Also known as:DEBIAN-CVE-2007-4408

Description

ircu 2.10.12.05 and earlier ignores timestamps in bounces, which allows remote attackers to take over a channel during a netjoin by causing a bounce while a server with an older version of the channel is linking.

Affected packages (1)

Debian/ircd-ircufrom 0, < 2.10.12.10.dfsg1-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-4408