EUVD-2006-4117

Malware in sbrugna...

SUSE CVE-2006-6811

KsIRC 1.3.12 allows remote attackers to cause a denial of service crash via a long PRIVMSG string when connecting to an Internet Relay Chat IRC server, which causes an assertion failure and results in a NULL pointer dereference. NOTE: this issue was originally reported as a buffer overflow...

DEBIAN-CVE-2010-3438

libpoe-component-irc-perl before v6.32 does not remove carriage returns and line feeds. This can be used to execute arbitrary IRC commands by passing an argument such as "some text\rQUIT" to the 'privmsg' handler, which would cause the client to disconnect from the server...

Command injection

libpoe-component-irc-perl before v6.32 does not remove carriage returns and line feeds. This can be used to execute arbitrary IRC commands by passing an argument such as "some text\rQUIT" to the 'privmsg' handler, which would cause the client to disconnect from the server...

CVE-2006-6811

KsIRC 1.3.12 allows remote attackers to cause a denial of service crash via a long PRIVMSG string when connecting to an Internet Relay Chat IRC server, which causes an assertion failure and results in a NULL pointer dereference. NOTE: this issue was originally reported as a buffer overflow...

w3tw0rk / Pitbul IRC Bot Remote Code Execution

This module allows remote command execution on the w3tw0rk / Pitbul IRC Bot. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'w3tw0rk / Pitbul IRC Bot Remote Code Execution', 'Description' = %q...

Trillian 0.73/0.74 IRC PRIVMSG Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5755/info Trillian is an instant messaging client that supports a number of protocols including IRC, ICQ, MSN. It is available for Microsoft Windows systems. A buffer overflow has been discovered in Trillian version .73 a...

Design/Logic Flaw

ctcphandler.cpp in Quassel before 0.6.3 and 0.7.x before 0.7.1 allows remote attackers to cause a denial of service unresponsive IRC via multiple Client-To-Client Protocol CTCP requests in a PRIVMSG message...

pBot Remote Code Execution

!/usr/bin/perl Exploit Title: pBot Remote Code Execution "" hostauth Date: 31.07.2012 Exploit Author: @bwallHatesTwits Software Link: https://www.firebwall.com/decoding/read.php?u=620d21fd31b87046e94975e03fdafa8a decoded from attempted attack Version: Various versions Tested on: Linux 3.2 use...

Ubuntu Update for quassel vulnerability USN-991-1

Ubuntu Update for Linux kernel vulnerabilities USN-991-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN9911.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for quassel vulnerability USN-991-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...

Fedora 13 : perl-POE-Component-IRC-6.14-2.fc13.1 (2010-8911)

Plugs a security hole by simplifying privmsg handler: Removed the undocumented behavior of concatenating multiple arguments. It only accepts one argument now, and newlines/CR in a message and everything following them will be stripped as with other commands. Note that Tenable Network Security has...

Fedora 12 : perl-POE-Component-IRC-6.14-1.fc12.1 (2010-8904)

Plugs a security hole by simplifying privmsg handler: Removed the undocumented behavior of concatenating multiple arguments. It only accepts one argument now, and newlines/CR in a message and everything following them will be stripped as with other commands. Note that Tenable Network Security has...

Debian DSA-1826-1 : eggdrop - several vulnerabilities

Several vulnerabilities have been discovered in eggdrop, an advanced IRC robot. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-2807 It was discovered that eggdrop is vulnerable to a buffer overflow, which could result in a remote user executing...

mIRC PRIVMSG Message Processing Buffer Overflow (CVE-2008-4449)

Internet Relay Chat IRC is a form of instant messaging over the Internet. It is mainly designed for group communication in discussion forums called channels, but also allows one-to-one communication via private messages. mIRC is a popular IRC client for Microsoft Windows. There exists a buffer...

mIRC PRIVMSG Handling Stack Buffer Overflow

This module exploits a buffer overflow in the mIRC IRC Client v6.34 and earlier. By enticing a mIRC user to connect to this server module, an excessively long PRIVMSG command can be sent, overwriting the stack. Due to size restrictions, ordinal payloads may be necessary. This module is based on t...

Fedora Core 9 FEDORA-2009-5568 (eggdrop)

The remote host is missing an update to eggdrop announced via advisory FEDORA-2009-5568. OpenVAS Vulnerability Test $Id: fcore20095568.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-5568 eggdrop Authors: Thomas Reinke Copyright: Copyright c 2009...

Mandrake Security Advisory MDVSA-2009:126 (eggdrop)

The remote host is missing an update to eggdrop announced via advisory MDVSA-2009:126. OpenVAS Vulnerability Test $Id: mdksa2009126.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:126 eggdrop Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...

Fedora 10 : eggdrop-1.6.19-4.fc10 (2009-5572)

mod/server.mod/servmsg.c in Eggheads Eggdrop and Windrop 1.6.19 and earlier allows remote attackers to cause a denial of service crash via a crafted PRIVMSG that causes an empty string to trigger a negative string length copy. NOTE: this issue exists because of an incorrect fix for CVE-2007-2807...

CVE-2009-1789

mod/server.mod/servmsg.c in Eggheads Eggdrop and Windrop 1.6.19 and earlier allows remote attackers to cause a denial of service crash via a crafted PRIVMSG that causes an empty string to trigger a negative string length copy. NOTE: this issue exists because of an incorrect fix for CVE-2007-2807...

Design/Logic Flaw

mod/server.mod/servmsg.c in Eggheads Eggdrop and Windrop 1.6.19 and earlier allows remote attackers to cause a denial of service crash via a crafted PRIVMSG that causes an empty string to trigger a negative string length copy. NOTE: this issue exists because of an incorrect fix for CVE-2007-2807...