IRC-Junkie.org – IRC News

The well known bouncer BNC contains a remote buffer overflow exploit.

“There is a buffer overflow vulnerability in getnickuserhost() function that is called when BNC is processing response from some IRC server. When BNC is connected to some IRC server, it will send ‘USER’ and ‘NICK’ command. Server response is at some point processed with getnickuserhost() function.” This post at Security Focus explains.

The overflow is present in version 2.8.9 and below. “Vulnerability can be exploited if attacker tricks user to connect to his fake IRC server that will exploit this vulnerability. If the attacker has access to BNC proxy server, this vulnerability can be used to gain shell access on machine here BNC proxy server is set.“, the Security Focus post explains.

This vulnerability has been fixed in version 2.9.0.

The well known bouncer BNC contains a remote buffer overflow exploit. "There is a buffer overflow vulnerability in getnickuserhost() function that is called when BNC is processing response from some IRC server. When BNC is connected to some IRC server, it will send 'USER' and 'NICK' command. Server response is at some point processed with ...

Related posts:

1. mIRC Local DCC Issue: Exploit, Vulnerability or Neither? mIRC has seen issues with DCC exploits in the past....
2. KVIrc 3.4.0 irc:// URI handler format string vulnerability – reloaded No, not only mIRC has bugs ;) For the second...
3. KVIrc 3.x and 4.x Remote Command Execution Vulnerability All current versions of the KVIrc IRC client contain a...
4. UnrealIRCd updates their IRCd to 3.2.8.1 The UnrealIRCd project released a bugfix release of version 3.2.8...
5. Eggdrop 1.6.19 Released It took almost 2 years for a new release, and...

Tags: Hack, IRC, Software

This entry was posted on Friday, November 12th, 2004 at 2:53 pm and is filed under Hack, IRC, Software. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.