2 matches found
Code injection
ircu 2.10.12.05 and earlier ignores timestamps in bounces, which allows remote attackers to take over a channel during a netjoin by causing a bounce while a server with an older version of the channel is linking...
CVE-2007-4411
CVE-2007-4411 affects ircu 2.10.12.05 and earlier. The issue allows remote attackers to reveal the hidden IP address of arbitrary +x users by issuing a sequence of /silence commands using either (1) CIDR mask arguments or (2) other arguments that map to IP groups, and then observing CTCP ping rep...