[17808] in bugtraq
Re: bitchx remote xploit
daemon@ATHENA.MIT.EDU (Daniel Jacobowitz)
Tue Nov 28 14:28:23 2000
Mail-Followup-To: RaiSe <raise@UNDERSEC.COM>, BUGTRAQ@SECURITYFOCUS.COM
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Message-Id: <20001127155828.A29671@drow.them.org>
Date: Mon, 27 Nov 2000 15:58:28 -0500
Reply-To: Daniel Jacobowitz <dmj+@ANDREW.CMU.EDU>
From: Daniel Jacobowitz <dmj+@ANDREW.CMU.EDU>
X-To: RaiSe <raise@UNDERSEC.COM>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <Pine.LNX.4.10.10011270008060.999-200000@localhost>; from
raise@UNDERSEC.COM on Mon, Nov 27, 2000 at 12:15:09AM +0100
On Mon, Nov 27, 2000 at 12:15:09AM +0100, RaiSe wrote:
> It only works with version 1.0c16 .
>
> Goodbye
>
>
> --------------------------------------
> RaiSe
> UNDERSEC Security Team
> NetSearch Ezine Staff
> http://www.netsearch-ezine.com
> --------------------------------------
> /*
> * BitchX Xploit by RaiSe
> * Tested with version 1.0c16(+) in: redhat 6.0 (2.2.16)
> * redhat 7.0 (2.2.16)
> * debian 2.2 (2.2.16)
> *
> * NetSearch Ezine Staff
> * http://www.netsearch-ezine.com
> *
> */
Sorry, you've got a different copy of Debian 2.2 than the rest of the
world does... This was fixed in 1.0c16-2, in July, when the problem
was first discovered.
Dan
/--------------------------------\ /--------------------------------\
| Daniel Jacobowitz |__| SCS Class of 2002 |
| Debian GNU/Linux Developer __ Carnegie Mellon University |
| dan@debian.org | | dmj+@andrew.cmu.edu |
\--------------------------------/ \--------------------------------/
