VYPR
Medium severity5.9OSV Advisory· Published Sep 26, 2016· Updated Jun 17, 2026

CVE-2016-7142

CVE-2016-7142

Description

The m_sasl module in InspIRCd before 2.0.23, when used with a service that supports SASL_EXTERNAL authentication, allows remote attackers to spoof certificate fingerprints and consequently log in as another user via a crafted SASL message.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • Inspircd/InspircdOSV3 versions
    v1.0.0, v1.0.1, v1.0.2, …+ 2 more
    • (no CPE)range: v1.0.0, v1.0.1, v1.0.2, …
    • cpe:2.3:a:inspircd:inspircd:*:*:*:*:*:*:*:*range: <=2.0.22
    • (no CPE)range: <2.0.23
  • cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.