Bugtraq mailing list archives
remote crash BitchX 1.0c16
From: edwards () BITCHX DIMENSION6 COM (Colten Edwards)
Date: Tue, 4 Jul 2000 00:01:18 -0600
There's a small bug in the latest BitchX in which a nasty user can invite you to a channel with a %s in it, causing the client to coredump. As alot of channels/users on irc use the client, I felt I should post a notice about this problem. A small patch is available on www.bitchx.com/downloads.html as well as on ftp.bitchx.com/pub/BitchX/1.0c16.patch This is a classic case of printf(variable); where variable contains formatting chars. I doubt very much this would lead to a root exploit, anyone running any irc client as root, should be examined professionally. I wish to thank the person who discovered this and reported it to #bitchx on efnet, as well as the many emails I received on this subject. We had a patch available for this before it widely known.. Colten Edwards panasync@efnet
Current thread:
- Re: WuFTPD: Providing *remote* root since at least1994 Alan J Rosenthal (Jun 30)
- <Possible follow-ups>
- Re: WuFTPD: Providing *remote* root since at least1994 Kragen Sitaker (Jun 30)
- Re: WuFTPD: Providing *remote* root since at least1994 Kragen Sitaker (Jun 30)
- XFree86 4.0.1 and /tmp Joseph S. Myers (Jul 02)
- BitchX - more on format bugs? Forever shall I be. (Jul 03)
- BitchX exploit possibly waiting to happen, certain DoS bert hubert (Jul 03)
- Re: BitchX exploit possibly waiting to happen, certain DoS Daniel Jacobowitz (Jul 05)
- remote crash BitchX 1.0c16 Colten Edwards (Jul 03)
- Re: remote crash BitchX 1.0c16 Moniz, Troy (Jul 05)
- Oracle Web Listener for AIX DoS Peter Grundl (Jul 04)
- Remote DoS Attack in LocalWEB HTTP Server 1.2.0 Vulnerability Ussr Labs (Jul 04)
- Recovering Passwords in Visible Systems' Razor Clifford, Shawn A (Jul 05)
- proftp advisory lamagra (Jul 05)
- Re: proftp advisory Max Vision (Jul 05)
- Re: proftp advisory Daniel Jacobowitz (Jul 05)
- Secure IRC Fabio Pietrosanti (Jul 06)
- Re: WuFTPD: Providing *remote* root since at least1994 Sebastian (Jul 01)
- Re: WuFTPD: Providing *remote* root since at least1994 Lamagra Argamal (Jul 01)
(Thread continues...)