Medium severity5.9OSV Advisory· Published Sep 26, 2016· Updated Jun 17, 2026
CVE-2016-7142
CVE-2016-7142
Description
The m_sasl module in InspIRCd before 2.0.23, when used with a service that supports SASL_EXTERNAL authentication, allows remote attackers to spoof certificate fingerprints and consequently log in as another user via a crafted SASL message.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4Patches
Vulnerability mechanics
References
5- www.debian.org/security/2016/dsa-3662nvdThird Party Advisory
- www.inspircd.org/2016/09/03/v2023-released.htmlnvdRelease NotesVendor Advisory
- www.openwall.com/lists/oss-security/2016/09/05/8nvdThird Party Advisory
- www.openwall.com/lists/oss-security/2016/09/04/3nvd
- github.com/inspircd/inspircd/commit/74fafb7f11b06747f69f182ad5e3769b665eea7anvd
News mentions
0No linked articles in our index yet.