Debian Security Advisory DSA 307-1 (ircii-pana)

The remote host is missing an update to ircii-pana announced via advisory DSA 307-1. OpenVAS Vulnerability Test $Id: deb3071.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 307-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian Security Advisory DSA 306-1 (ircii-pana)

The remote host is missing an update to ircii-pana announced via advisory DSA 306-1. OpenVAS Vulnerability Test $Id: deb3061.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 306-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian Security Advisory DSA 291-1 (ircii)

The remote host is missing an update to ircii announced via advisory DSA 291-1. OpenVAS Vulnerability Test $Id: deb2911.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 291-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian: Security Advisory (DSA-291)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian: Security Advisory (DSA-306)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

irc/bitchx -- multiple vulnerabilities

bannedit reports: Stack-based buffer overflow in BitchX 1.1 Final allows remote IRC servers to execute arbitrary code via a long string in a MODE command, related to the pmode variable. Nico Golde reports: There is a security issue in ircii-pana in bitchx' hostname command. The ehostname function...

Debian DSA-291-1 : ircii - buffer overflows

Timo Sirainen discovered several problems in ircII, a popular client for Internet Relay Chat IRC. A malicious server could craft special reply strings, triggering the client to write beyond buffer boundaries. This could lead to a denial of service if the client only crashes, but may also lead to...

DEBIAN-CVE-2003-0323

Multiple buffer overflows in ircII 20020912 allows remote malicious IRC servers to cause a denial of service crash and possibly execute arbitrary code via responses that are not properly fed to the mystrcat function by 1 ctcpbuffer, 2 cannotjoinchannel, 3 statusmakeprintable for Statusbar drawing...

CVE-2003-0323

Multiple buffer overflows in ircII 20020912 allows remote malicious IRC servers to cause a denial of service crash and possibly execute arbitrary code via responses that are not properly fed to the mystrcat function by 1 ctcpbuffer, 2 cannotjoinchannel, 3 statusmakeprintable for Statusbar drawing...

CVE-2003-0323

Multiple buffer overflows in ircII 20020912 allows remote malicious IRC servers to cause a denial of service crash and possibly execute arbitrary code via responses that are not properly fed to the mystrcat function by 1 ctcpbuffer, 2 cannotjoinchannel, 3 statusmakeprintable for Statusbar drawing...

CVE-2003-0323

CVE-2003-0323 affects IRC clients including ircII (20020912 build) and EPIC4. The issue arises from multiple buffer overflows in the code paths used to process protocol replies (e.g., ctcp_buffer, cannot_join_channel, status_make_printable for Statusbar drawing, create_server_list), allowing a re...

CVE-2003-0323

Multiple buffer overflows in ircII 20020912 allows remote malicious IRC servers to cause a denial of service crash and possibly execute arbitrary code via responses that are not properly fed to the mystrcat function by 1 ctcpbuffer, 2 cannotjoinchannel, 3 statusmakeprintable for Statusbar drawing...

CVE-2003-0323

Multiple buffer overflows in ircII 20020912 allows remote malicious IRC servers to cause a denial of service crash and possibly execute arbitrary code via responses that are not properly fed to the mystrcat function by 1 ctcpbuffer, 2 cannotjoinchannel, 3 statusmakeprintable for Statusbar drawing...

[SECURITY] [DSA 291-1] New ircII packages fix DoS and arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 291-1 [email protected] http://www.debian.org/security/ Martin Schulze April 22nd, 2003 http://www.debian.org/security/faq -...

[SECURITY] [DSA 291-1] New ircII packages fix DoS and arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 291-1 [email protected] http://www.debian.org/security/ Martin Schulze April 22nd, 2003 http://www.debian.org/security/faq -...

DSA-291 ircii - buffer overflows

Bulletin has no description...

Buffer overflows in ircII-based clients

After seeing the BitchX "DoS" problem mentioned the n'th time already, I decided to finally audit ircII based clients to show some worse problems they have. I had been pretty sure for years that malicious servers can exploit them in multiple ways, and I think many others have known it as well. EP...

Buffer overflows in ircII based clients

Multiple buffer overflows can only be exploited from server side...

ircii_exploit.txt

The following exploits are for IrcII4.4. A dcc chat buffer overflow, one is for linux and the other one is for mirc. -- start irciisploit.txt -- / ircii-4.4 exploit by bladi & aLmUDeNa buffer overflow in ircii dcc chat's allow to excute arbitrary Affected: ircII-4.4 Patch: Upgrade to ircII-4.4M...

ide_expl.mrc

; ideexpl.mrc: vade79 - [email protected], www.fakehalo.org. ; ; ircii-4-4 exploit-ported to mirc5.7, works reverse to ircii-4.4.c. You send the chat ; request instead of having them chat you, result is the same. ; ; Wrote directly from ircii-4.4.cfor nix, that someone gave me to port to mirc. ; ...