FreeBSD : ngircd -- format string vulnerability (bc4a7efa-7d9a-11d9-a9e7-0001020eed82)

A No System Group security advisory reports that ngircd is vulnerable to a format string vulnerability in the LogResolver function of log.c, if IDENT support is enabled. This could allow a remote attacker to execute arbitrary code with the permissions of the ngircd daemon, which is root by defaul...

CVE-2005-0226

ngIRCd is affected by a format-string vulnerability in Log_Resolver() (log.c) for versions 0.8.2 and earlier when IDENT is enabled, SYSLOG logging is used, and DEBUG is on. This can allow a remote attacker to execute arbitrary code with ngIRCd’s privileges (typically root). Several advisories and...