CVE-2019-20917

An issue was discovered in InspIRCd 2 before 2.0.28 and 3 before 3.3.0. The mysql module contains a NULL pointer dereference when built against mariadb-connector-c 3.0.5 or newer. When combined with the sqlauth or sqloper modules, this vulnerability can be used for remote crashing of an InspIRCd server by any user able to connect to a server.
Configurations

Configuration 1

cpe:2.3:a:inspircd:inspircd:*:*:*:*:*:*:*:*
cpe:2.3:a:inspircd:inspircd:*:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

Information

Published : 2020-09-11 05:15

Updated : 2023-01-27 06:22


NVD link : CVE-2019-20917

Mitre link : CVE-2019-20917

Products Affected
No products.
CWE