CVE-2016-7144

Published: 2017-01-18T17:59Z

Last Modified: 2024-11-21T02:57Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

The m_authenticate function in modules/m_sasl.c in UnrealIRCd before 3.2.10.7 and 4.x before 4.0.6 allows remote attackers to spoof certificate fingerprints and consequently log in as another user via a crafted AUTHENTICATE parameter. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt