Jobe1986

**Name of the Vulnerable Software and Affected Versions** nefarious2 (affected versions not specified) **Description** The issue allows remote attackers to spoof certificate fingerprints, enabling them to log in as another user. This is achieved by crafting the `AUTHENTICATE` parameter. The `m authenticate` function in `ircd/m authenticate.c` is specifically vulnerable to this type of attack. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.