Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » ircII multiple vulnerabilities

ircII multiple vulnerabilities

by Nikola Strahija on March 26th, 2003 Several vulnerabilities have been found in ircII. Various buffer overflows attacks and denial of service can be caused by a malicious attacker.


The core of this vulnerabilies lies in the improper checks for control characters and thus corrupt sensitive memory with attacker supplied values.

Vulnerable:
ircII Project ircII 20021103
ircII Project ircII 20020912
ircII Project ircII 20020403


Not vulnerable:
ircII Project ircII 20030313


Solution:
ircII Project ircII 20021103:

ircII Project Upgrade ircii-20030313
ftp://ircii.warped.com/pub/ircII/

OpenPKG Upgrade ircii-20021103-1.2.1.src.rpm
ftp://ftp.openpkg.org/release/1.2/UPD/ircii-20021103-1.2.1.src.rpm

ircII Project ircII 20020912:

ircII Project Upgrade ircii-20030313
ftp://ircii.warped.com/pub/ircII/

ircII Project ircII 20020403:

ircII Project Upgrade ircii-20030313
ftp://ircii.warped.com/pub/ircII/

OpenPKG Upgrade ircii-20020403-1.1.1.src.rpm
ftp://ftp.openpkg.org/release/1.1/UPD/ircii-20020403-1.1.1.src.rpm

Discovered by:
Timo Sirainen, tss at iki.fi


Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »