CVE Daily – UnrealIRCd (High+Critical) https://cvedaily.com/pages/tags/unrealircd.html CVE Daily – UnrealIRCd (High+Critical) en Wed, 03 Jun 2026 21:27:08 +0000 [High] CVE-2023-50784 – A buffer overflow in websockets in UnrealIRCd 6.1.0 through 6.1.3 before 6.1.4 a... https://nvd.nist.gov/vuln/detail/CVE-2023-50784 https://nvd.nist.gov/vuln/detail/CVE-2023-50784 Sat, 16 Dec 2023 23:15:40 +0000 High CVE-2023-50784

A buffer overflow in websockets in UnrealIRCd 6.1.0 through 6.1.3 before 6.1.4 allows an unauthenticated remote attacker to crash the server by sending an oversized packet (if a websocket port is open). Remote code execution might be possible on some uncommon, older platforms.

CVSS: 7.5 · CWE: CWE-120

View on NVD

]]> [High] CVE-2016-7144 – The m_authenticate function in modules/m_sasl.c in UnrealIRCd before 3.2.10.7 an... https://nvd.nist.gov/vuln/detail/CVE-2016-7144 https://nvd.nist.gov/vuln/detail/CVE-2016-7144 Wed, 18 Jan 2017 17:59:00 +0000 High CVE-2016-7144

The m_authenticate function in modules/m_sasl.c in UnrealIRCd before 3.2.10.7 and 4.x before 4.0.6 allows remote attackers to spoof certificate fingerprints and consequently log in as another user via a crafted AUTHENTICATE parameter.

CVSS: 8.1 · CWE: CWE-287

View on NVD

]]> [High] CVE-2010-2075 – UnrealIRCd 3.2.8.1, as distributed on certain mirror sites from November 2009 th... https://nvd.nist.gov/vuln/detail/CVE-2010-2075 https://nvd.nist.gov/vuln/detail/CVE-2010-2075 Tue, 15 Jun 2010 14:04:26 +0000 High CVE-2010-2075

UnrealIRCd 3.2.8.1, as distributed on certain mirror sites from November 2009 through June 2010, contains an externally introduced modification (Trojan Horse) in the DEBUG3_DOLOG_SYSTEM macro, which allows remote attackers to execute arbitrary commands.

CVSS: 7.5 · CWE: CWE-20

View on NVD

]]>