Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Bugtraq: ircd exploit in ircu based code

ircd exploit in ircu based code

From: Kevin Day <toasty_at_DRAGONDATA.COM>
Date: Tue, 13 Jul 1999 20:49:02 -0500

Most irc networks using ircu based servers have a bug that can cause users
to segfault the server.

In m_join, the code doesn't check to see if get_channel returned failure (by
returning NULL).

While the line numbers will probably be off, this patch will work in most
ircu based servers.

--- ircd/channel.c Tue Jul 13 19:58:46 1999
+++ ircd/channel.c Tue Jul 13 20:05:31 1999
@@ -2004,6 +2004,12 @@

           chptr = get_channel (sptr, name, !CREATE); /* need the TS -Kev */

+ if (!chptr) {
+ sendto_one (sptr, err_str (ERR_NOSUCHCHANNEL),
+ me.name, parv[0], name);
+ return(0);
+ }
+
           sendto_serv_butone (cptr, ":%s MODE %s +%s%s %lu", me.name, name,
                               sendmode ? "o " : "", sendmode ? parv[0] : "",
                               chptr->creationtime); /* send the MODE to the

Kevin Day
DragonData
ToastyMan on irc.dragondata.com (on NewNet)
Received on Jul 14 1999

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos