[15660] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: remote crash BitchX 1.0c16

daemon@ATHENA.MIT.EDU (Antonomasia)
Thu Jul 6 14:48:09 2000

Message-Id:  <200007052021.VAA03286@notatla.demon.co.uk>
Date:         Wed, 5 Jul 2000 21:21:07 +0100
Reply-To: Antonomasia <ant@NOTATLA.DEMON.CO.UK>
From: Antonomasia <ant@NOTATLA.DEMON.CO.UK>
X-To:         edwards@bitchx.dimension6.com
To: BUGTRAQ@SECURITYFOCUS.COM

Colten Edwards <edwards bitchx.dimension6.com>:

> There's a small bug in the latest BitchX in which a nasty user can invite
> you to a channel with a %s in it...

> This is a classic case of printf(variable); where variable contains
> formatting chars.

For a crude Perl scanner for these bugs you could try
    http://www.notatla.demon.co.uk/SOFTWARE/SCANNER/argcount.plx
which arose out of discussion on the linux security audit list.

--
##############################################################
# Antonomasia   ant@notatla.demon.co.uk                      #
# See http://www.notatla.demon.co.uk/                        #
##############################################################


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[15660] in bugtraq

Re: remote crash BitchX 1.0c16

daemon@ATHENA.MIT.EDU (Antonomasia)Thu Jul 6 14:48:09 2000

daemon@ATHENA.MIT.EDU (Antonomasia)
Thu Jul 6 14:48:09 2000