evilnet/nefarious2

Releases1

Frequency

Last Release over 12 years ago

Stars43

Nefarious IRCu (Based on IRCu 2.10.12)

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2016-7145 ↗	Mar 7, 2017Tuesday, 7 March 2017, 15:59	—	7.5 HIGH
The m_authenticate function in ircd/m_authenticate.c in nefarious2 allows remote attackers to spoof certificate fingerprints and consequently log in as another user via a crafted AUTHENTICATE parameter.