{"id":"CVE-2016-7145","details":"The m_authenticate function in ircd/m_authenticate.c in nefarious2 allows remote attackers to spoof certificate fingerprints and consequently log in as another user via a crafted AUTHENTICATE parameter.","modified":"2026-04-11T05:00:46.135482Z","published":"2017-03-07T15:59:00.360Z","references":[{"type":"FIX","url":"http://www.openwall.com/lists/oss-security/2016/09/05/9"},{"type":"FIX","url":"https://github.com/evilnet/nefarious2/commit/f50a84bad996d438e7b31b9e74c32a41e43f8be5"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/evilnet/nefarious2","events":[{"introduced":"0"},{"last_affected":"f855aa038373e729951e231d5f4686f80fa85ea3"},{"fixed":"f50a84bad996d438e7b31b9e74c32a41e43f8be5"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"2.0"}]}}],"versions":["2.0"],"database_specific":{"vanir_signatures_modified":"2026-04-11T05:00:46Z","vanir_signatures":[{"signature_type":"Line","signature_version":"v1","target":{"file":"ircd/m_authenticate.c"},"source":"https://github.com/evilnet/nefarious2/commit/f50a84bad996d438e7b31b9e74c32a41e43f8be5","id":"CVE-2016-7145-0f9b3c52","digest":{"threshold":0.9,"line_hashes":["208219062012484996038940404366384603947","299618839438130165430991380132426443493","124370160900145148647823051765555358915","275687911345838898870057827048678759284","38238402662959267275467063390000386254","111013074550324480469116551169964853644","334510704401903841769322909532342299666","256792836499928675302235018837842196977"]},"deprecated":false},{"signature_type":"Function","signature_version":"v1","target":{"file":"ircd/m_authenticate.c","function":"m_authenticate"},"source":"https://github.com/evilnet/nefarious2/commit/f50a84bad996d438e7b31b9e74c32a41e43f8be5","id":"CVE-2016-7145-b149c8f1","digest":{"function_hash":"16296848066876065388828299164195817332","length":2687},"deprecated":false}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-7145.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}