mod/server.mod/servmsg.c in Eggheads Eggdrop and Windrop 1.6.19 and earlier allows remote attackers to cause a denial of service (crash) via a crafted PRIVMSG that causes an empty string to trigger a negative string length copy. NOTE: this issue exists because of an incorrect fix for CVE-2007-2807.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | eggdrop | <Β 1.6.19-1.2 | eggdrop_1.6.19-1.2_all.deb |
Debian | 11 | all | eggdrop | <Β 1.6.19-1.2 | eggdrop_1.6.19-1.2_all.deb |
Debian | 10 | all | eggdrop | <Β 1.6.19-1.2 | eggdrop_1.6.19-1.2_all.deb |
Debian | 999 | all | eggdrop | <Β 1.6.19-1.2 | eggdrop_1.6.19-1.2_all.deb |
Debian | 13 | all | eggdrop | <Β 1.6.19-1.2 | eggdrop_1.6.19-1.2_all.deb |